Open-source software’s adaptive nature ensures its durability, relevance, and compatibility with new technologies. When I started digging deeper into the open-source cybersecurity ecosystem, I discovered an engaged community of developers working to find practical solutions to many problems, one of…
Tag: MACOS
____________________ Summary: Google’s latest research shows a significant increase in zero-day vulnerabilities exploited by attackers in enterprise-specific software and appliances compared to previous years. Key Point 🛡️: – The number of found and exploited enterprise-specific technology zero-day…
Remcos RAT samples were delivered inside a .vhd archive that contained a shortcut invoking a PowerShell script (MacOSX.ps1) which chains multiple staged downloads and decodings to ultimately drop a Remcos payload. The chain includes a PNG carrying a base64 VBS…
Summary: 🏆 Pwn2Own Vancouver 2024 concluded with security researchers earning $1,132,500 by demonstrating 29 zero-day vulnerabilities. 🎯 Various categories were targeted, including web browsers, cloud-native/container, virtualization, and automotive systems. 💰 The total prize pool exceeded $1.3 mill…
An unpatchable vulnerability in Apple’s M-series chips has been reported. The Apple M-series chip vulnerability could potentially leak secret encryption keys. This flaw, embedded deep within the architecture of the chips, poses a challenge for the tech giant in terms of addressing security concerns…
Insikt Group analyzes cyber threat and geopolitical trends observed throughout 2023 and provides a comprehensive overview of the cyber threat landscape.
In 2023, researchers identified new adversary techniques targeting macOS, Microsoft, and Linux users, including increased stealer activity in macOS environments, reflective code loading, and AppleScript abuse.
The article details how ScamClub uses fingerprinting within VAST video campaigns to detect testing environments and decide whether to redirect users to scam pages. It describes a fingerprint variable that hides data via encoding and hashing and a sequence of c…
PornHub has now added Texas to its blocklist, preventing users in the state from accessing its site in protest of age verification laws. […]…
Chinese users looking for legitimate software such as Notepad++ and VNote on search engines like Baidu are being targeted with malicious ads and bogus links to distribute trojanized versions of the software and ultimately deploy Geacon, a Golang-based implementation of Cobalt Strike.
“The malicious site found in the notepad++ search is distributed through…
Osquery turns the OS into a SQL database to enable cross-platform malware analysis, and this post demonstrates how to use it for macOS malware analysis (OSX/Dummy). It also compares osquery with sandboxing and walks through a real-world analysis showing how to…
Attackers use Google redirects in their phishing attack leveraging a now-patched vulnerability that spreads the multifaceted malware….
Microsoft will soon provide a single Teams Windows and macOS app for all account types that will allow users to switch between work, school, or personal profiles. […]…
Infected versions of the text editors VNote and Notepad‐‐ for Linux and macOS, apparently loading a backdoor, are being distributed through a Chinese search engine.
Japanese cybersecurity officials issued a warning that North Korea’s infamous Lazarus Group hacking group recently launched a supply chain attack on the PyPI software repository for Python apps. Threat actors disseminated contaminated packages with names like “pycryptoenv” and “pycryptoconf” th…