Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Russian Antivirus Company Dr.Web Found New Malware Targeting MacOS
#1
https://www.ehackingnews.com/2019/05/rus...d.html?m=1         11 May 2019
Russian Antivirus Company Dr.Web Found New Malware Targeting MacOS        Specialists of the Russian company Dr Web found malicious software that threatens the MacOS operating system, which allows attackers to download and execute any Python code on the user's device. In addition, sites distributing this malware also infected Windows users with a dangerous spyware Trojan.

According to the employees of the company Dr Web, a new threat was discovered by their experts on April 29. This malware is called Mac.BackDoor.Siggen.20 and it's BackDoor that allows you to download malicious code from a remote server and execute it.

According to experts, the attackers will be able to gain unauthorized remote access to the computer system. They explained that it runs in the background and is hidden from the user. It is said that it is difficult to detect this malware.

Mac.BackDoor.Siggen.20 gets to devices through sites owned by its developers. One such resource is designed as a business card site with a portfolio of a non-existent person, and the second is disguised as a page with the WhatsApp application.

The Press Service of the company said that BackDoor or Trojan is loaded on the device depending on the operating system. If a visitor uses Mac OS, his device is infected with Mac.BackDoor.Siggen.20, and BackDoor.Wirenet.517 (NetWire) is loaded on Windows devices. NetWire is a long-known RAT Trojan by which hackers can remotely control the victim's computer, including the use of a camera and microphone on the device. In addition, the distributed RAT Trojan has a valid digital signature.

According to web specialists, about 300 visitors with unique IP addresses opened the site distributing Mac.BackDoor.Siggen.20 under the guise of Whatsapp application. The dangerous resource works since April 29 and has not yet been used by hackers in large-scale campaigns. Nevertheless, programmers recommend updating the antivirus in time, not to open suspicious business cards and distributing.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  U.S. Agencies and Allies Partner to Identify Russian Snake Malware Infrastructure Wor mrtrout 0 1,681 05-10-2023 , 03:29 AM
Last Post: mrtrout
  Russian hackers linked to widespread attacks targeting NATO and EU mrtrout 0 938 04-15-2023 , 07:54 PM
Last Post: mrtrout
  Hackers are targeting industrial systems with malware mrtrout 0 625 07-16-2022 , 06:46 PM
Last Post: mrtrout
  QNAP warns of new Checkmate ransomware targeting NAS devices mrtrout 0 570 07-07-2022 , 11:13 PM
Last Post: mrtrout
  ASUS warns of Cyclops Blink malware attacks targeting routers tarekma7 0 1,886 03-19-2022 , 02:40 PM
Last Post: tarekma7

Forum Jump:


Users browsing this thread: 1 Guest(s)