home.social

#macsyncstealer — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #macsyncstealer, aggregated by home.social.

  1. 2026-05-08 (Friday): Fake Homebrew page on nycaihong[.]com.

    Possibly distributing #MacSyncStealer using an initial loader from hxxp[:]//longbeachmartialarts[.]com/curl/116f3b0bd8053eead15479f4b04bd2d9bc050f282eceeec87fd7908458ad3abe

  2. macOS: Warum von Apple beglaubigte Schadsoftware zum wachsenden Problem wird
    Unter macOS taucht zunehmend Schadsoftware auf, die trotz Apples Schutzmechanismen ungehindert startet. Grund sind Apps, die korrekt signiert und von Apple beglaubigt wurden.

    apfeltalk.de/magazin/news/maco
    #Mac #News #Sicherheit #Apple #Beglaubigung #CodeSignierung #Gatekeeper #Jamf #macOS #MacSyncStealer #Malware #Sicherheit

  3. macOS: Warum von Apple beglaubigte Schadsoftware zum wachsenden Problem wird
    Unter macOS taucht zunehmend Schadsoftware auf, die trotz Apples Schutzmechanismen ungehindert startet. Grund sind Apps, die korrekt signiert und von Apple beglaubigt wurden.

    apfeltalk.de/magazin/news/maco
    #Mac #News #Sicherheit #Apple #Beglaubigung #CodeSignierung #Gatekeeper #Jamf #macOS #MacSyncStealer #Malware #Sicherheit

  4. macOS: Warum von Apple beglaubigte Schadsoftware zum wachsenden Problem wird
    Unter macOS taucht zunehmend Schadsoftware auf, die trotz Apples Schutzmechanismen ungehindert startet. Grund sind Apps, die korrekt signiert und von Apple beglaubigt wurden.

    apfeltalk.de/magazin/news/maco
    #Mac #News #Sicherheit #Apple #Beglaubigung #CodeSignierung #Gatekeeper #Jamf #macOS #MacSyncStealer #Malware #Sicherheit

  5. macOS: Warum von Apple beglaubigte Schadsoftware zum wachsenden Problem wird
    Unter macOS taucht zunehmend Schadsoftware auf, die trotz Apples Schutzmechanismen ungehindert startet. Grund sind Apps, die korrekt signiert und von Apple beglaubigt wurden.

    apfeltalk.de/magazin/news/maco
    #Mac #News #Sicherheit #Apple #Beglaubigung #CodeSignierung #Gatekeeper #Jamf #macOS #MacSyncStealer #Malware #Sicherheit

  6. macOS: Warum von Apple beglaubigte Schadsoftware zum wachsenden Problem wird
    Unter macOS taucht zunehmend Schadsoftware auf, die trotz Apples Schutzmechanismen ungehindert startet. Grund sind Apps, die korrekt signiert und von Apple beglaubigt wurden.

    apfeltalk.de/magazin/news/maco
    #Mac #News #Sicherheit #Apple #Beglaubigung #CodeSignierung #Gatekeeper #Jamf #macOS #MacSyncStealer #Malware #Sicherheit

  7. 2025-12-23 (Tuesday): Based on yesterday's Jamf article, I downloaded the fake installer for #MacSyncStealer from zkcall[.]net and ran it on a macOS host in my lab.

    A #pcap of the #MacSync #Stealer traffic, the associated IOCs, the #malware sample, and a link to the Jamf article are at www.malware-traffic-analysis.net/2025/12/23/index.html

    Of note, the zkcall[.]net download page also has a link for a Windows download. The downloaded EXE file appears to be #DonutLoader, based on one of the follow-up EXE files it retrieved and ran: app.any.run/tasks/afd3ae74-297

  8. 2025-12-23 (Tuesday): Based on yesterday's Jamf article, I downloaded the fake installer for #MacSyncStealer from zkcall[.]net and ran it on a macOS host in my lab.

    A #pcap of the #MacSync #Stealer traffic, the associated IOCs, the #malware sample, and a link to the Jamf article are at www.malware-traffic-analysis.net/2025/12/23/index.html

    Of note, the zkcall[.]net download page also has a link for a Windows download. The downloaded EXE file appears to be #DonutLoader, based on one of the follow-up EXE files it retrieved and ran: app.any.run/tasks/afd3ae74-297

  9. 2025-12-23 (Tuesday): Based on yesterday's Jamf article, I downloaded the fake installer for #MacSyncStealer from zkcall[.]net and ran it on a macOS host in my lab.

    A #pcap of the #MacSync #Stealer traffic, the associated IOCs, the #malware sample, and a link to the Jamf article are at www.malware-traffic-analysis.net/2025/12/23/index.html

    Of note, the zkcall[.]net download page also has a link for a Windows download. The downloaded EXE file appears to be #DonutLoader, based on one of the follow-up EXE files it retrieved and ran: app.any.run/tasks/afd3ae74-297

  10. 2025-12-23 (Tuesday): Based on yesterday's Jamf article, I downloaded the fake installer for #MacSyncStealer from zkcall[.]net and ran it on a macOS host in my lab.

    A #pcap of the #MacSync #Stealer traffic, the associated IOCs, the #malware sample, and a link to the Jamf article are at www.malware-traffic-analysis.net/2025/12/23/index.html

    Of note, the zkcall[.]net download page also has a link for a Windows download. The downloaded EXE file appears to be #DonutLoader, based on one of the follow-up EXE files it retrieved and ran: app.any.run/tasks/afd3ae74-297

  11. 2025-12-23 (Tuesday): Based on yesterday's Jamf article, I downloaded the fake installer for #MacSyncStealer from zkcall[.]net and ran it on a macOS host in my lab.

    A #pcap of the #MacSync #Stealer traffic, the associated IOCs, the #malware sample, and a link to the Jamf article are at www.malware-traffic-analysis.net/2025/12/23/index.html

    Of note, the zkcall[.]net download page also has a link for a Windows download. The downloaded EXE file appears to be #DonutLoader, based on one of the follow-up EXE files it retrieved and ran: app.any.run/tasks/afd3ae74-297

  12. Macbook users watch out! New MacSync Stealer malware is slipping past Apple’s notarization, disguised as a trusted app and stealing saved passwords from macOS devices, experts warn.

    Read: hackread.com/macsync-stealer-m

    #Malware #Apple #CyberSecurity #macOS #MacSyncStealer