Saturday, January 28, 2023
No Result
View All Result
  • Home
  • Recent
  • Business
  • Economy
  • Investing
  • Markets
  • Personal Finance
  • Retirement
  • Tech
  • Startups
  • Insurance
  • Market Research
  • Crypto
  • Home
  • Recent
  • Business
  • Economy
  • Investing
  • Markets
  • Personal Finance
  • Retirement
  • Tech
  • Startups
  • Insurance
  • Market Research
  • Crypto
No Result
View All Result
Home Technology

This dangerous Mac malware can infiltrate your entire system

Updates Finance by Updates Finance
July 20, 2022
in Technology
0
74
SHARES
1.2k
VIEWS
Share on FacebookShare on Twitter


A newly uncovered malware designed to target Macs has been effective in obtaining access to systems and stealing sensitive data.

You might also like

Best Juicer of 2023 – CNET

Best ultraportable laptops 2023: Best overall, best battery life, and more

Twitter vows to take ‘less severe actions’ against rule-breaking accounts

The discovery was detailed by internet security company ESET, which named the malware CloudMensis because of its reliance on cloud storage services.

A large monitor displaying a security hacking breach warning.
Stock Depot/Getty Images

As reported by Bleeping Computer and PCMag, the malware can successfully take screenshots of a user’s system without their knowledge, in addition to registering keystrokes, taking files and documents (even from removable storage devices), and listing emailing messages and attachments.

CloudMensis was originally detected by ESET in April 2022. It makes use of pCloud, Yandex Disk, and Dropbox in order to execute command-and-control (C2) communication.

The malware is fairly advanced in the sense that it provides the ability to carry out numerous malicious commands, such as viewing running processes, “running shell commands and uploading the output to cloud storage,” and downloading and opening arbitrary files.

While CloudMensis has now been uncovered, the identity of those behind the malware attack remains unknown.

“We still do not know how CloudMensis is initially distributed and who the targets are,” ESET researcher Marc-Etienne Léveillé said. “The general quality of the code and lack of obfuscation shows the authors may not be very familiar with Mac development and are not so advanced. Nonetheless, a lot of resources were put into making CloudMensis a powerful spying tool and a menace to potential targets.”

ESET’s analysis reveals that the threat actors managed to infiltrate their first Mac target on February 4, 2022. Interestingly, CloudMensis has only been used a handful of times to infect a target. Furthermore, the Objective-C coding abilities from the hackers reveals they’re not well-versed in the MacOS platform, according to Bleeping Computer.

A depiction of a hacker breaking into a system via the use of code.
Getty Images

When ESET examined the cloud storage addresses that CloudMensis was associated with, the corresponding metadata from the cloud drives revealed “there were at most 51 victims” from February 4 until April, 2022.

Once the malware is executed on the Mac system, CloudMensis is then able to completely evade Apple’s MacOS Transparency Consent and Control (TCC) system without being detected. This feature alerts users to a window where they’ll need to grant specific permission for apps that perform screen captures or monitor keyboard events.

By avoiding TCC, CloudMensis can subsequently view the Macs’ screens and associated activity, as well as scan removable storage devices.

In any case, the malware is clearly more on the sophisticated end if it can bypass Mac’s own security measures with such relative ease. And it’s not just Macs that are exposed — PCMag highlights how the malware’s computing code confirms it can also infiltrate Intel-powered systems.

“CloudMensis is a threat to Mac users, but its very limited distribution suggests that it is used as part of a targeted operation,” ESET said. “At the same time, no undisclosed vulnerabilities (zero-days) were found to be used by this group during our research. Thus, running an up-to-date Mac is recommended to avoid, at least, the mitigation bypasses.”

If you own a Mac and want to check for viruses and malware, then be sure to head over to our guide explaining how to do so.

Editors’ Recommendations













Source link

Tags: dangerousentireinfiltrateMacmalwaresystem
Share30Tweet19
Updates Finance

Updates Finance

Recommended For You

Best Juicer of 2023 – CNET

by Updates Finance
January 28, 2023
0

In this article: I can't say for certain that juicing is the key to health and longevity. But it's worth noting that famed nutrition guru and father of...

Read more

Best ultraportable laptops 2023: Best overall, best battery life, and more

by Updates Finance
January 28, 2023
0

If portability is a top priority of yours, then investing in an ultraportable laptop is the way to go. This class of laptops are exceedingly thin, lightweight, and...

Read more

Twitter vows to take ‘less severe actions’ against rule-breaking accounts

by Updates Finance
January 28, 2023
0

Twitter is promising that it’ll take “less severe actions” when disciplining accounts that break its rules; it’ll only suspend Twitter accounts that engage in “severe or ongoing, repeat...

Read more

New York City-based Paradigm, whose tech streamlines data aggregation and patient recruitment to speed up clinical trials, launches with a $203M Series A (Maureen Farrell/New York Times)

by Updates Finance
January 28, 2023
0

Maureen Farrell / New York Times: New York City-based Paradigm, whose tech streamlines data aggregation and patient recruitment to speed up clinical trials, launches with a $203M Series...

Read more

NASA’s ‘Mega Moon Rocket’ aced first flight and is ready for crewed Artemis II launch • TechCrunch

by Updates Finance
January 27, 2023
0

The enormous Space Launch System passed its first test with flying colors, NASA’s preliminary analysis concludes, and the rocket and Orion capsule are good to go for their...

Read more
Next Post

UK PM race: Rishi Sunak, Liz Truss are two final candidates

Related News

What You Can Do To Protect Your Retirement Plan

January 16, 2023

The US Treasury Yield Curve Recession Indicator is Flashing Red : stocks

November 21, 2022

8 Challenges of Sending Large Sums of Money

August 18, 2022

Browse by Category

  • Business
  • Cryptocurrency
  • Economy
  • Insurance
  • Investing
  • Latest updates
  • Market Research
  • Markets
  • Personal Finance
  • Retirement
  • Startups
  • Technology

Get the latest Financial news on updatesfinance.com. Business news, Economy news, Investing news, Personal Finance and more.

CATEGORIES

  • Business
  • Cryptocurrency
  • Economy
  • Insurance
  • Investing
  • Latest updates
  • Market Research
  • Markets
  • Personal Finance
  • Retirement
  • Startups
  • Technology

Recent News

  • Best Juicer of 2023 – CNET
  • Want to Go Electric? This Gas Stove Rebate Saves You $840

Copyright © 2022 - Updates Finance..

No Result
View All Result
  • Home
  • DMCA
  • Disclaimer
  • Cookie Privacy Policy
  • Privacy Policy
  • Terms and Conditions
  • Contact us

Copyright © 2022 - Updates Finance..

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?