#RustDoor

North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware

by

September 16, 2024 at 09:27AM Cybersecurity researchers warn about North Korean threat actors targeting LinkedIn users with RustDoor malware, posing as cryptocurrency recruiters. The attackers aim at infiltrating financial and cryptocurrency networks through social engineering campaigns, prompting victims to download malicious coding challenges. The RustDoor backdoor persists in macOS and Windows machines, highlighting evolving tactics … Read more

Courtroom Software Backdoored to Deliver RustDoor Malware in Supply Chain Attack

by

May 24, 2024 at 06:00AM The courtroom video recording software developed by Justice AV Solutions (JAVS) has been targeted in a software supply chain attack, resulting in the delivery of malware known as RustDoor. Cybersecurity firm Rapid7 discovered the attack and reported that the compromised installer and associated executable have been signed with unexpected Authenticode … Read more

Courtroom Recording Platform JAVS Hijacked in Supply Chain Attack

by

May 23, 2024 at 05:07PM The RustDoor installer, a supply chain cyberattack via Justice AV’s corrupted Viewer v8.3.7, allows adversaries to take over infected systems. It was initially targeting macOS machines in 2023 and later spread to Windows as GateDoor. Customers are advised to re-image affected endpoints and reset credentials, as the threat actors’ C2 … Read more

RustDoor macOS Backdoor Targets Cryptocurrency Firms with Fake Job Offers

by

February 16, 2024 at 09:45AM Cryptocurrency companies are targeted by a new Apple macOS backdoor called RustDoor, distributed as a Visual Studio update and used in targeted attacks. Its components include first-stage downloaders masquerading as job offering PDFs, Golang-based binaries, and leaky endpoint revealing infected victims’ details. Meanwhile, a South Korean IT organization affiliated with … Read more

Alert: New Stealthy “RustDoor” Backdoor Targeting Apple macOS Devices

by

February 10, 2024 at 02:21AM A new Rust-based macOS backdoor, codenamed RustDoor, has been targeting users since November 2023. It masquerades as an update for Microsoft Visual Studio, affecting both Intel and Arm architectures. The malware is capable of gathering and exfiltrating information to a command-and-control server, with links to prominent ransomware families. The U.S. … Read more

New macOS Backdoor Linked to Prominent Ransomware Groups

by

February 9, 2024 at 04:09PM Bitdefender reports the discovery of the macOS backdoor RustDoor, linked to ransomware families Black Basta and Alphv/BlackCat. The malware supports Intel and Arm architectures and has been undetected since November 2023. It harvests and exfiltrates files, generates victim IDs, and has variants with different functionalities, including impersonating applications. From the … Read more

New RustDoor macOS malware impersonates Visual Studio update

by

February 9, 2024 at 11:00AM A new Rust-based macOS malware, known as RustDoor, has been spreading as a Visual Studio update, providing backdoor access to compromised systems. Linked to the ALPHV/BlackCat ransomware gang’s infrastructure, it communicates with command and control servers potentially associated with ransomware operations. The malware has advanced capabilities and is distributed under … Read more