home.social

#macosmalware — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #macosmalware, aggregated by home.social.

  1. Martin Reitsma @[email protected] ·

    North Korean hackers use new macOS malware in crypto-theft attacks
    North Korean hackers use new macOS malware in crypto-theft attacks
    #Northkoreanhackers #Macosmalware

    opr.news/6f20d50260210en_us?li

    Download Now
    opr.as/share

    #northkoreanhackers #macosmalware
  2. Pyrzout :vm: @[email protected] ·

    XCSSET Malware Mutates Again, Expands Its Reach to Firefox and Crypto Theft thecyberexpress.com/xcsset-mal #FirewallDaily #macOSmalware #CyberNews #XCSSET #macOS

    #firewalldaily #macosmalware #cybernews #xcsset #macos
  3. Pyrzout :vm: @[email protected] ·

    XCSSET Malware Mutates Again, Expands Its Reach to Firefox and Crypto Theft thecyberexpress.com/xcsset-mal #FirewallDaily #macOSmalware #CyberNews #XCSSET #macOS

    #firewalldaily #macosmalware #cybernews #xcsset #macos
  4. Pyrzout :vm: @[email protected] ·

    XCSSET Malware Mutates Again, Expands Its Reach to Firefox and Crypto Theft thecyberexpress.com/xcsset-mal #FirewallDaily #macOSmalware #CyberNews #XCSSET #macOS

    #macos #xcsset #cybernews #macosmalware #firewalldaily
  5. Pyrzout :vm: @[email protected] ·

    XCSSET Malware Mutates Again, Expands Its Reach to Firefox and Crypto Theft thecyberexpress.com/xcsset-mal #FirewallDaily #macOSmalware #CyberNews #XCSSET #macOS

    #firewalldaily #macosmalware #cybernews #xcsset #macos
  6. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #malware #cryptojacking #macosmalware #xcsset
  7. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #malware #cryptojacking #macosmalware #xcsset
  8. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #xcsset #macosmalware #cryptojacking #malware
  9. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #malware #cryptojacking #macosmalware #xcsset
  10. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #malware #cryptojacking #macosmalware #xcsset
  11. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #malware #cryptojacking #macosmalware #xcsset
  12. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #xcsset #macosmalware #cryptojacking #malware
  13. Pyrzout :vm: @[email protected] ·

    New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions securityweek.com/new-xcsset-ma #Malware&Threats #cryptojacking #macOSmalware #malware #XCSSET

    #malware #cryptojacking #macosmalware #xcsset
  14. The DefendOps Diaries @[email protected] ·

    Xcode devs, beware: a new macOS malware variant is sneaking into projects by disguising itself as a trusted app—and even hijacking clipboard crypto transactions. Curious how it evades detection?

    thedefendopsdiaries.com/xcsset

    #xcsset
    #macosmalware
    #xcode
    #supplychainattack
    #cybersecurity
    #malwareanalysis
    #obfuscation
    #cryptotheft
    #browsersecurity

    #xcsset #macosmalware #xcode #supplychainattack #cybersecurity #malwareanalysis
  15. The DefendOps Diaries @[email protected] ·

    Xcode devs, beware: a new macOS malware variant is sneaking into projects by disguising itself as a trusted app—and even hijacking clipboard crypto transactions. Curious how it evades detection?

    thedefendopsdiaries.com/xcsset

    #xcsset
    #macosmalware
    #xcode
    #supplychainattack
    #cybersecurity
    #malwareanalysis
    #obfuscation
    #cryptotheft
    #browsersecurity

    #browsersecurity #cryptotheft #obfuscation #malwareanalysis #cybersecurity #supplychainattack
  16. The DefendOps Diaries @[email protected] ·

    Xcode devs, beware: a new macOS malware variant is sneaking into projects by disguising itself as a trusted app—and even hijacking clipboard crypto transactions. Curious how it evades detection?

    thedefendopsdiaries.com/xcsset

    #xcsset
    #macosmalware
    #xcode
    #supplychainattack
    #cybersecurity
    #malwareanalysis
    #obfuscation
    #cryptotheft
    #browsersecurity

    #xcsset #macosmalware #xcode #supplychainattack #cybersecurity #malwareanalysis
  17. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #malware #macosmalware #infostealer #featured #amos
  18. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #malware #macosmalware #infostealer #featured #amos
  19. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #amos #featured #infostealer #macosmalware #malware
  20. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #malware #macosmalware #infostealer #featured #amos
  21. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #malware #macosmalware #infostealer #featured #amos
  22. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #malware #macosmalware #infostealer #featured #amos
  23. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #amos #featured #infostealer #macosmalware #malware
  24. Pyrzout :vm: @[email protected] ·

    Widespread Infostealer Campaign Targeting macOS Users securityweek.com/widespread-in #Malware&Threats #macOSmalware #infostealer #Featured #AMOS

    #malware #macosmalware #infostealer #featured #amos
  25. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #malware #macosmalware #shamos #amos
  26. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #malware #macosmalware #shamos #amos
  27. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #amos #shamos #macosmalware #malware
  28. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #malware #macosmalware #shamos #amos
  29. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #malware #macosmalware #shamos #amos
  30. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #malware #macosmalware #shamos #amos
  31. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #amos #shamos #macosmalware #malware
  32. Pyrzout :vm: @[email protected] ·

    Hundreds Targeted in New Atomic macOS Stealer Campaign securityweek.com/hundreds-targ #Malware&Threats #macOSmalware #SHAMOS #AMOS

    #malware #macosmalware #shamos #amos
  33. HackerNoon @[email protected] ·

    Moonlock analysed Mac.c stealer, a new rival to AMOS. Learn its tactics, code reuse, and "building in public" strategy. hackernoon.com/macc-stealer-ta #macosmalware

    #macosmalware
  34. HackerNoon @[email protected] ·

    Moonlock analysed Mac.c stealer, a new rival to AMOS. Learn its tactics, code reuse, and "building in public" strategy. hackernoon.com/macc-stealer-ta #macosmalware

    #macosmalware
  35. HackerNoon @[email protected] ·

    Moonlock analysed Mac.c stealer, a new rival to AMOS. Learn its tactics, code reuse, and "building in public" strategy. hackernoon.com/macc-stealer-ta #macosmalware

    #macosmalware
  36. HackerNoon @hackernoon ·

    Moonlock analysed Mac.c stealer, a new rival to AMOS. Learn its tactics, code reuse, and "building in public" strategy. hackernoon.com/macc-stealer-ta

    #macosmalware
  37. HackerNoon @[email protected] ·

    Moonlock analysed Mac.c stealer, a new rival to AMOS. Learn its tactics, code reuse, and "building in public" strategy. hackernoon.com/macc-stealer-ta #macosmalware

    #macosmalware
  38. Krzysztof Kołacz @[email protected] ·

    Nowe złośliwe oprogramowanie „NimDoor” atakuje użytkowników macOS

    Zespół SentinelLabs ujawnił kampanię hakerską prowadzoną przez grupę powiązaną z Koreą Północną (DPRK), która wykorzystuje fałszywe zaproszenia Zoom do infekowania komputerów Mac złośliwym oprogramowaniem nazwanym NimDoor.

    To jeden z najbardziej zaawansowanych ataków na macOS, skierowany głównie w startupy z sektora Web3 i kryptowalut.

    Jak działa atak?

    1. Podszywanie się pod znajomego na Telegramie – ofiara zapraszana jest na spotkanie przez Calendly.
    2. W e-mailu pojawia się fałszywy link do aktualizacji SDK Zooma – zawiera plik z ponad 10 000 pustych linii kodu, by ukryć funkcję.
    3.  Po uruchomieniu, malware:
      • nawiązuje zaszyfrowane połączenie przez WebSocket Secure (wss) z serwerem kontrolującym,
      • utrzymuje dostęp po restarcie systemu, wykorzystując sygnały SIGINT/SIGTERM,
      • eksportuje dane z Keychaina, przeglądarek i Telegrama przy użyciu skryptów Bash,
      • wykorzystuje AppleScript i język Nim, co jest rzadkością w malware na macOS.

    Co czyni NimDoor wyjątkowym? Wykorzystuje język Nim – bardziej złożony i mniej wykrywany niż typowe Go, Python czy Bash. Wprowadza też nową technikę trwałości, działającą nawet po restarcie systemu. Posiada ponadto rozbudowany łańcuch infekcji, od socjotechniki po wieloetapowe backdoory.

    Fałszywy plik aktualizacji zawiera ukryty kod, utrudniając analizę i wykrycie.

    Jak się zabezpieczyć?

    1. Nie pobieraj aktualizacji Zooma (ani innych aplikacji) spoza oficjalnych źródeł.
    2. Zgłaszaj podejrzane zaproszenia do spotkań otrzymane przez Telegram lub e-mail.
    3. Regularnie aktualizuj macOS i oprogramowanie zabezpieczające.
    4. Używaj menedżera haseł i weryfikacji dwuetapowej.

    #AppleScriptMalware #atakNaWeb3 #BashExfiltration #fakeZoomSDK #hakerzyZKoreiPółnocnej #kryptowalutyBezpieczeństwo #macOSMalware #macOSSpyware2025 #macOSZabezpieczenia #malwareNim #NimDoor #SentinelLabsRaport #zagrożeniaDlaStartupów #ZoomFałszywaAktualizacja

    #applescriptmalware #ataknaweb3 #bashexfiltration #fakezoomsdk #hakerzyzkoreipolnocnej #kryptowalutybezpieczenstwo
  39. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware – Source: www.securityweek.com ciso2ciso.com/macos-users-warn #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #securityweekcom #macOSmalware #ReaderUpdate #securityweek #Malware #adware

    #rssfeedpostgeneratorecho #cybersecuritynews #malware #securityweekcom #macosmalware #readerupdate
  40. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware – Source: www.securityweek.com ciso2ciso.com/macos-users-warn #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #securityweekcom #macOSmalware #ReaderUpdate #securityweek #Malware #adware

    #rssfeedpostgeneratorecho #cybersecuritynews #malware #securityweekcom #macosmalware #readerupdate
  41. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware – Source: www.securityweek.com ciso2ciso.com/macos-users-warn #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #securityweekcom #macOSmalware #ReaderUpdate #securityweek #Malware #adware

    #adware #securityweek #readerupdate #macosmalware #securityweekcom #malware
  42. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware – Source: www.securityweek.com ciso2ciso.com/macos-users-warn #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #securityweekcom #macOSmalware #ReaderUpdate #securityweek #Malware #adware

    #rssfeedpostgeneratorecho #cybersecuritynews #malware #securityweekcom #macosmalware #readerupdate
  43. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware securityweek.com/macos-users-w #Malware&Threats #macOSmalware #ReaderUpdate #malware #adware

    #malware #macosmalware #readerupdate #adware
  44. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware securityweek.com/macos-users-w #Malware&Threats #macOSmalware #ReaderUpdate #malware #adware

    #malware #macosmalware #readerupdate #adware
  45. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware securityweek.com/macos-users-w #Malware&Threats #macOSmalware #ReaderUpdate #malware #adware

    #adware #readerupdate #macosmalware #malware
  46. Pyrzout :vm: @[email protected] ·

    macOS Users Warned of New Versions of ReaderUpdate Malware securityweek.com/macos-users-w #Malware&Threats #macOSmalware #ReaderUpdate #malware #adware

    #malware #macosmalware #readerupdate #adware
  47. Pyrzout :vm: @[email protected] ·

    Albabat Ransomware Expands Targets, Abuses GitHub – Source: www.securityweek.com ciso2ciso.com/albabat-ransomwa #rssfeedpostgeneratorecho #CyberSecurityNews #securityweekcom #Linuxmalware #macOSmalware #securityweek #ransomware #Albabat

    #rssfeedpostgeneratorecho #cybersecuritynews #securityweekcom #linuxmalware #macosmalware #securityweek
  48. Pyrzout :vm: @[email protected] ·

    Albabat Ransomware Expands Targets, Abuses GitHub – Source: www.securityweek.com ciso2ciso.com/albabat-ransomwa #rssfeedpostgeneratorecho #CyberSecurityNews #securityweekcom #Linuxmalware #macOSmalware #securityweek #ransomware #Albabat

    #rssfeedpostgeneratorecho #cybersecuritynews #securityweekcom #linuxmalware #macosmalware #securityweek
  49. Pyrzout :vm: @[email protected] ·

    Albabat Ransomware Expands Targets, Abuses GitHub – Source: www.securityweek.com ciso2ciso.com/albabat-ransomwa #rssfeedpostgeneratorecho #CyberSecurityNews #securityweekcom #Linuxmalware #macOSmalware #securityweek #ransomware #Albabat

    #albabat #ransomware #securityweek #macosmalware #linuxmalware #securityweekcom
  50. Pyrzout :vm: @[email protected] ·

    Albabat Ransomware Expands Targets, Abuses GitHub – Source: www.securityweek.com ciso2ciso.com/albabat-ransomwa #rssfeedpostgeneratorecho #CyberSecurityNews #securityweekcom #Linuxmalware #macOSmalware #securityweek #ransomware #Albabat

    #rssfeedpostgeneratorecho #cybersecuritynews #securityweekcom #linuxmalware #macosmalware #securityweek