November 14, 2024 at 11:16AM Hackers are using a new technique called RustyAttr to conceal malware in macOS file metadata, evading detection by employing decoy PDFs. This method, reminiscent of Bundlore adware, attributes the samples to North Korean group Lazarus. The malware remains undetected by security agents, indicating an experimental delivery approach. ### Meeting Takeaways … Read more
November 12, 2024 at 10:46AM North Korean threat actors are targeting macOS systems with trojanized cryptocurrency-themed apps built using Flutter, which bypassed Appleās security checks. Discovered by Jamf Threat Labs, these signed and notarized apps connected to DPRK servers and executed scripts. Apple revoked their signatures, but the full extent of the operation is unclear. … Read more
September 3, 2024 at 12:54AM Eight vulnerabilities found in Microsoft applications for macOS could allow an adversary to gain elevated privileges or access sensitive data. By exploiting the Transparency, Consent, and Control (TCC) framework, an attacker could leverage affected applications, circumventing user consent. The vulnerabilities impact apps like Outlook, Teams, Word, and Excel. Measures like … Read more
August 22, 2024 at 03:12PM Cthulhu Stealer is a new Apple macOS malware designed to steal cryptocurrency and gaming credentials as well as browser data. It mimics the successful Atomic Stealer and is becoming prevalent. As macOS threats are increasing, organizations with macOS devices should enhance their security measures due to the lack of expertise … Read more
August 19, 2024 at 03:07PM Eight vulnerabilities in Microsoft’s macOS apps pose security risks by allowing unauthorized access to sensitive data, recording video and sound, and escalating privileges. Microsoft has been reluctant to address the issues, deeming them low risk and insisting that certain applications require the ability to load unsigned libraries. Apple’s security measures … Read more
August 16, 2024 at 07:45AM Cybercriminals are promoting Banshee Stealer, a new macOS malware capable of stealing various data from compromised systems. Advertised for $3,000/month, it targets macOS passwords, hardware/software info, keychain passwords, browser data, and cryptocurrency wallets. While it evades detection by checking for analysis signs, its evasion methods are basic, leaving it susceptible … Read more
August 13, 2024 at 01:45PM Adobe released 72 security vulnerability fixes for various products, warning Windows and macOS users of code execution and denial-of-service risks. Critical flaws were addressed in Adobe Acrobat, Reader, Illustrator, Photoshop, InDesign, Commerce, Bridge, Substance 3D Stager, Substance 3D Sampler, Substance 3D Designer, and InCopy, urging users to update to the … Read more
July 31, 2024 at 03:32PM Apple released updates for its products to address vulnerabilities in Siri and digital assistants across its devices. The updates aim to prevent unauthorized access to sensitive data, such as contacts, even when the device is locked. Users are advised to update to iOS 17.6 and iPadOS 17.6 to mitigate these … Read more
July 9, 2024 at 01:04PM Adobe has released critical patches for code execution bugs in Adobe Premiere Pro, Adobe InDesign, and Adobe Bridge on Windows and macOS. The vulnerabilities pose significant security risks. This information was reported by SecurityWeek. Based on the meeting notes, it seems that Adobe has identified at least seven code execution … Read more
July 1, 2024 at 01:18PM Security flaws in CocoaPods were discovered, allowing attackers to hijack and insert malicious code into popular iOS and macOS applications, posing serious supply chain risks. The vulnerabilities were patched in October 2023, but the issues stemmed from a 2014 migration, leading to unclaimed pods and flawed verification processes. Downstream customers … Read more