Tuesday, April 24, 2018
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
First-Quarter Lobbying Expenditures: Google, AT&T, Comcast and Comcast Remain Top Spenders
Samsung Launches Six Original Series on Samsung VR Video Service on Gear VR
Facebook Says Users Are Not Products, the Social Network Is
European Regulators Investigate Apple's Proposed Acquisition of Shazam
Amazon is Working on Home Robots: report
7nm Volume Production to Fuel TSMC's Profits This Year
Toshiba Weighs Memory Chip Unit Options
Google Chat Launches to compete with Apple's iMessage
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > New Mac...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, February 17, 2017
New Mac OS X Malware Steal Passwords, And iPhone Backups


Security researchers have discovered a new type of malware which targets macOS users. The company says that the malware, which it has dubbed Xagent, is capable of stealing passwords, taking screenshots and grabbing iPhone backups stored on the machine.



Once successfully installed, the backdoor checks if a debugger is attached to the process. If it detects one, it terminates itself to prevent execution. Otherwise, it waits for an Internet connection before initiating communication with the C&C servers. After the communication has been established, the payload starts the modules.

Bitdefender says it still can't be absolutely certain of who is behind the malware, but all evidence points in the direction of the APT28 cybercrime group.

"Our past analysis of samples known to be linked to APT28 group shows a number of similarities between the Sofacy/APT28/Sednit Xagent component for Windows/Linux and the Mac OS binary that currently forms the object of our investigation," Bitdefender said.

Bitdefender's analysis reveals the presence of modules that can probe the system for hardware and software configurations, grab a list of running processes and run additional files, as well as get desktop screenshots and harvest browser passwords.

But the most important module, from an intelligence-gathering perspective, is the one that allows the operator(s) to exfiltrate iPhone backups stored on a compromised Mac.

Bitdefender's investigation is ongoing so there is not much the company can say yet.



Previous
Next
SoftBank To Offload Sprint: report        All News        Xiaomi Launches a Smart GPS-Watch and A Smart Guitar
HTC Takes VR lead in China     General Computing News      Xiaomi Launches a Smart GPS-Watch and A Smart Guitar

Get RSS feed Easy Print E-Mail this Message

Related News
Microsoft Launches $250,000 Security Bounty
Peer-to-peer App Kicked off Dofoil Coin Miner Outbreak
Telegram Messenger Vulnerability Spread Multipurpose Malware
Google Removed 700,000 Apps From Google Play in 2017
Fake Spectre and Meltdown Patch Pushes Malware
Malware Spread Through PornHub
Cloak and Dagger Security Hole in Android Discovered
Alleged NSA Malware Does Not Affect Microsoft Users
Preinstalled Malware May Be Targeting Your Android Phone
Researchers Say 1 Million Google Accounts Breached by "Gooligan"
Android Devices Vulnerable To Physical RAM Attack
Millions Of Android Devices Infected With Chinese Malware

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2018 - All rights reserved -
Privacy policy - Contact Us .