CoinMiner exploits Apple APSDaemon vulnerability to evade detection

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,165
Content source
https://www.bleepingcomputer.com/news/security/coinminer-exploits-apple-apsdaemon-vulnerability-to-evade-detection/
Malware distributors are abusing a DLL hijacking vulnerability in Apple’s Push Notification service Windows executable to install coin miners on users attempting to download copyrighted software.

A common method of generating revenue on warez and crack sites, adult sites, video sharing sites, and file sharing sites is to open low quality web page when a visitor attempts to view or download content. These web pages redirect users through a series of sites that eventually push fake software updates, unwanted browser extension, fake giveaways, and malware.

A new malware campaign is using these redirects to distribute malware that uses DLL hijacking vulnerabilities to install a cryptocurrency miner on a victim's computer. [....]
Click to expand...
blog.morphisec.com

CrystalBit / Apple Double DLL Hijack

As part of a rapid change in the work environment during COVID-19 pandemic, Morphisec Labs has tracked the evolution of the attack landscape, including a new double DLL hijack that includes AppleVersions.dll.
blog.morphisec.com blog.morphisec.com
 
  • Like
  • +Reputation
Reactions: Protomartyr, stefanos, bayasdev and 2 others
You must log in or register to reply here.

Similar threads

Shadowra
    • +Reputation
    • Like
Malware News StopCrypt: Most widely distributed ransomware evolves to evade detection
Replies
3
Views
993
Security News
Victor M
Victor M
silversurfer
    • Like
    • Applause
    • +Reputation
Microsoft Teams vulnerability discovered to bypass file sending restrictions
Replies
1
Views
1,519
News Archive
silversurfer
silversurfer
Gandalf_The_Grey
    • Like
    • +Reputation
Fake zero-day PoC exploits on GitHub push Windows, Linux malware
Replies
1
Views
1,528
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top