Tuesday, February 28, 2017
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Samsung Group Disbands Its Future Strategy Office
Pioneer BDR-XD06J-UHD Is The First Portable UHD BD PC Drive
MWC 2017: Porsche Design Reveals 2-in-1 with Windows 10
GDC 17: Google Announces New Games For Daydream
Oppo Brings 5X Optical Zoom To Dual-camera Smartphones
Kingston Ships 2TB USB Flash Drive
One-Blue Lowers Blu-ray Licensing Fees
Twitch to Sell Video Games on Streaming Site
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > New Mac...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, February 17, 2017
New Mac OS X Malware Steal Passwords, And iPhone Backups


Security researchers have discovered a new type of malware which targets macOS users. The company says that the malware, which it has dubbed Xagent, is capable of stealing passwords, taking screenshots and grabbing iPhone backups stored on the machine.



Once successfully installed, the backdoor checks if a debugger is attached to the process. If it detects one, it terminates itself to prevent execution. Otherwise, it waits for an Internet connection before initiating communication with the C&C servers. After the communication has been established, the payload starts the modules.

Bitdefender says it still can't be absolutely certain of who is behind the malware, but all evidence points in the direction of the APT28 cybercrime group.

"Our past analysis of samples known to be linked to APT28 group shows a number of similarities between the Sofacy/APT28/Sednit Xagent component for Windows/Linux and the Mac OS binary that currently forms the object of our investigation," Bitdefender said.

Bitdefender's analysis reveals the presence of modules that can probe the system for hardware and software configurations, grab a list of running processes and run additional files, as well as get desktop screenshots and harvest browser passwords.

But the most important module, from an intelligence-gathering perspective, is the one that allows the operator(s) to exfiltrate iPhone backups stored on a compromised Mac.

Bitdefender's investigation is ongoing so there is not much the company can say yet.



Previous
Next
SoftBank To Offload Sprint: report        All News        Xiaomi Launches a Smart GPS-Watch and A Smart Guitar
HTC Takes VR lead in China     General Computing News      Xiaomi Launches a Smart GPS-Watch and A Smart Guitar

Get RSS feed Easy Print E-Mail this Message

Related News
Researchers Say 1 Million Google Accounts Breached by "Gooligan"
Android Devices Vulnerable To Physical RAM Attack
Millions Of Android Devices Infected With Chinese Malware
'GODLESS' Android Mobile Malware Uses Multiple Exploits to Root Devices
Fraunhofer SIT Finds Vulnerabilities in Android Security Apps
ESET Discovers New Self-protecting USB Trojan
Video Malware Attack Spreads Across Websites
Malware Attacks Non-jailbroken Apple iOS Devices
F-Secure Identifies Malware Family Linked To Russian State-backed Cyber-espionage
Android Ransomware Can Change Your Mobile's PIN Code
WireLurker Malware Targets Apple Devices
FBI Cleanups GameOver Zeus, Cryptolocker Botnets

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2017 - All rights reserved -
Privacy policy - Contact Us .