Microsoft on Wednesday shed light on a previously undocumented Mac trojan that it said has undergone several iterations since its first appearance in September 2020, effectively granting it an "increasing progression of sophisticated capabilities."
The company's Microsoft 365 Defender Threat Intelligence Team dubbed the new malware family "UpdateAgent," charting its evolution from a barebones information stealer to a second-stage payload distributor as part of multiple attack waves observed in 2021.
"The latest campaign saw the malware installing the evasive and persistent Adload adware, but UpdateAgent's ability to gain access to a device can theoretically be further leveraged to fetch other, potentially more dangerous payloads," the researchers said.
The actively in-development malware is said to be propagated via drive-by downloads or advertisement pop-ups that masquerade as legitimate software like video applications and support agents, even as the authors have made steady improvements that have transformed UpdateAgent into a progressively persistent piece of malware.
Chief among the advancements include the capability to abuse existing user permissions to surreptitiously perform malicious activities and circumvent macOS Gatekeeper controls, a security feature that ensures only trusted applications from identified developers can be installed on a system.
In addition, UpdateAgent has been found to take advantage of public cloud infrastructure, namely Amazon S3 and CloudFront services, to host its second-stage payloads, including adware, in the form of .DMG or .ZIP files.
Once installed, the Adload malware makes use of ad injection software and man-in-the-middle (MitM) techniques to intercept and reroute users' internet traffic through the attacker's servers to insert rogue ads into web pages and search engine results to increase the chances of multiple infections on the devices.
"UpdateAgent is uniquely characterized by its gradual upgrading of persistence techniques, a key feature that indicates this trojan will likely continue to use more sophisticated techniques in future campaigns," the researchers cautioned.
Related word
- Hacking Tools Windows
- Hacker Security Tools
- Hacker Tools Free
- Hacker Hardware Tools
- Pentest Tools For Ubuntu
- Pentest Tools Apk
- World No 1 Hacker Software
- Hacker Tools Github
- Hack Tools Mac
- Hack Tools Online
- Pentest Tools Bluekeep
- Hack Tool Apk
- Nsa Hack Tools
- Hacking Tools Name
- Pentest Tools Github
- Tools 4 Hack
- Hacker Tools Windows
- Pentest Tools Find Subdomains
- Hack Tools Pc
- Pentest Tools
- Hacker Tools Github
- Hacker Tools For Windows
- Hacker Tools Windows
- Hacker Tools Windows
- Pentest Automation Tools
- Pentest Tools Bluekeep
- Hacking Tools Windows 10
- Best Hacking Tools 2020
- Hacker Tools Mac
- Pentest Tools Framework
- Pentest Tools Url Fuzzer
- Hacking App
- Hacking Tools Software
- Hacking Tools Hardware
- Hacking Tools For Kali Linux
- What Is Hacking Tools
- Easy Hack Tools
- Pentest Tools Online
- Pentest Tools Find Subdomains
- Hacker Hardware Tools
- Hacker Tools Apk
- Game Hacking
- Pentest Tools Open Source
- Hacker Tools Free
- Computer Hacker
- Top Pentest Tools
- Hacking Tools For Windows
- Pentest Tools Review
- Pentest Tools For Windows
- Hacker Tools Mac
- Kik Hack Tools
- Pentest Tools Kali Linux
- Pentest Tools Github
- Pentest Box Tools Download
- Hacker Tools For Ios
- Ethical Hacker Tools
- Underground Hacker Sites
- Pentest Tools Open Source
- Hacker Techniques Tools And Incident Handling
- Pentest Tools Find Subdomains
- Pentest Tools Online
- Hack Apps
- Install Pentest Tools Ubuntu
- Hack Tools Mac
- Install Pentest Tools Ubuntu
- Hacking Tools For Kali Linux
- Hacker Tools Linux
- Hack Tool Apk
- Hack Tools For Ubuntu
- Beginner Hacker Tools
- Hacker Tools 2020
- Hack Tool Apk No Root
- Best Pentesting Tools 2018
- Hacking Tools 2020
- Pentest Tools Windows
- Pentest Tools Nmap
- Hak5 Tools
- Hackers Toolbox
- Hack Apps
- Nsa Hack Tools Download
- Hacking Tools Free Download
- Pentest Tools For Mac
Nenhum comentário:
Postar um comentário