#MacOSAttack

Multiple Microsoft Apps for macOS Vulnerable to Library Injection Attacks

by

August 19, 2024 at 05:32PM Microsoft apps for macOS have been found vulnerable to library injection attacks, enabling malicious actions without user interaction. Researchers at Cisco Talos identified that these apps, including Outlook, Teams, PowerPoint, and more, disable library validation, allowing attackers to gain unauthorized access. Despite being alerted, Microsoft has categorized the issue as … Read more

Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software

by

January 19, 2024 at 08:51AM Pirated macOS applications from Chinese websites harbor a backdoor allowing attackers remote control over infected machines. The malware, hosted on “macyy[.]cn,” uses a dropper to fetch backdoor and downloader components, which enable persistence and facilitate additional payloads. This echoes previous incidents involving the ZuRu malware, possibly indicating a successor. (Words: … Read more