Google warns hackers used macOS zero-day flaw, could capture keystrokes, screengrab

Content source
https://www.zdnet.com/article/google-warns-of-hackers-using-macos-zero-day-flaw-to-capture-keystrokes-screengrabs/
LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,517
Likely state-backed hackers used the now-patched flaw.

Google's Threat Analysis Group (TAG) has revealed that hackers targeting visitors to websites in Hong Kong were using a previously undisclosed, or zero-day, flaw in macOS to spy on people.

Apple patched the bug, tracked as CVE-2021-30869, in a macOS Catalina update in September, about a month after Google TAG researchers found it being used.
Click to expand...


Once root access was gained, the attackers downloaded a payload that ran silently in the background on infected Macs. The design of the malware suggests a well-resourced attacker, according to Google TAG.

"The payload seems to be a product of extensive software engineering. It uses a publish-subscribe model via a Data Distribution Service (DDS) framework for communicating with the C2. It also has several components, some of which appear to be configured as modules," notes Hernandez.
Click to expand...
 
  • Like
Reactions: upnorth, plat and Gandalf_The_Grey
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
Security News Google: State hackers still exploiting Internet Explorer zero-days
Replies
0
Views
324
Security News
Gandalf_The_Grey
Gandalf_The_Grey
LASER_oneXM
    • Like
Cytrox's Predator Spyware Targeted Android Users with Zero-Day Exploits
Replies
0
Views
305
News Archive
LASER_oneXM
LASER_oneXM
silversurfer
    • Like
    • +Reputation
Hackers Infect macOS with New DazzleSpy Backdoor in Watering-Hole Attacks
Replies
0
Views
423
News Archive
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top