August 27, 2024 at 12:33PM Chinese instant messaging app users are targeted by HZ RAT, a backdoor malware on Apple macOS replicating Windows version. Distributed via RTF documents and software installers, it connects to C2 server for instructions, likely for credential harvesting and reconnaissance. Recent sample impersonates OpenVPN, collecting user data, with most C2 servers … Read more
August 23, 2024 at 01:36AM Cybersecurity researchers have found Cthulhu Stealer, a $500/month macOS-targeting information stealer. It masquerades as popular software, steals passwords and cryptocurrency wallets, and lacks stealth and notable features. Though less frequent, macOS threats exist, prompting Apple to enhance security in upcoming updates. Users are urged to be cautious when downloading software. … Read more
July 27, 2024 at 02:00AM Cybersecurity researchers found a malicious package “lr-utils-lib” on the Python Package Index, targeting specific Apple macOS systems to steal Google Cloud credentials. It checks for macOS, compares UUID against hardcoded hashes, and harvests Google Cloud data. The captured info is sent to a remote server. Social engineering tactics suggest a … Read more