Hackers Target Apple’s Mac Users With New Malware Hidden in Popular Apps

Contact Your Elected Officials

Cybercriminals embedded malicious code and remote-control tools in software used for server management and secure connections.

A new variant of macOS malware known as ZuRu is targeting Apple users by embedding malicious code and a hacking tool into popular utilities used for remote connections and server management, cybersecurity researchers have warned.

First discovered in 2021, ZuRu has evolved over time and can now infect more apps and in new ways, cybersecurity firm SentinelOne said in a July 10 alert. Notably, the latest strain only works on Macs running the Sonoma 14.1 operating system, which Apple launched in October 2023, or Sequoia, its latest operating system.

Earlier versions of ZuRu were found hidden inside both pirated and legitimate copies of popular tools used by developers and IT professionals such as SecureCRT, Navicat, and Microsoft Remote Desktop for Mac. Most recently, the malware was found in a trojanized version of Termius, an app used for managing remote servers and secure network connections.

“This recent sample uses a new method to trojanize legitimate applications,” wrote Phil Stokes and Dinesh Devadoss, cybersecurity researchers at SentinelOne. They noted that the Trojanized version of Termius has had malicious code added to it, along with a helper program called a command-and-control (C2) implant, which allows attackers to remotely control infected Macs.

This particular C2 implant is based on Khepri, an open-source hacking tool designed to let attackers run commands and gather information from a compromised system, the researchers said. Once installed, the implant gives hackers powerful capabilities, including transferring files to or from the victim’s computer, running or controlling programs on the infected Mac, and executing commands and capturing whatever results or data those commands produce.

“The latest variant of macOS.ZuRu continues the threat actor’s pattern of trojanizing legitimate macOS applications used by developers and IT professionals,” the researchers noted. They added that attackers appear to have shifted from earlier, simpler methods to embedding malware in helper applications, likely in an effort to bypass modern security detection measures.

By Tom Ozimek

Read Full Article on TheEpochTimes.com

The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Cracker Barrel’s Remake Proves Lefty Women Unfit to Lead

“The customer is always right” remains true today regardless of whether people like Cracker Barrel CEO Julie Masino opt to respect it and follow it or not.

Walmart on Its Radioactive Shrimp: ‘The Health and Safety of Our Customers Is Always a Top Priority’

“Nowadays people know the price of everything and the...

Trump Boldly Takes on Woke Indoctrination in America’s Museums 

President Trump is correcting the leftist agenda turning our cultural institutions into propaganda mills for victimhood and anti-American sentiment. 

Wicked Right

I recently watched the movie Wicked and wasn't surprised by how transparent and utterly progressive it was intended to be.

Will humanity be the victim of technological change or the master of its fate in 2026?

It's often debated whether history is primarily shaped by influential individuals, social structures, or technological innovation.

Women-Only Spa Seeks Re-Hearing in Ninth Circuit Over Admission of Transgender-Identifying Men

Olympus Spa, a women-only Korean-style spa in Washington State was legally forced to allow in transwomen, is seeking a re-hearing.

Authorities Bust Multimillion Dollar LA-Area Cargo Theft Ring

Authorities in LA County have cracked a storefront operation trafficking millions of dollars worth of goods allegedly stolen in train and cargo burglaries.

FBI Warns of Russian Cyber Hackers Targeting Critical US Infrastructure

Russian hackers breached computer systems at manufacturing plants, power grids, water treatment facilities, and other critical infrastructure in US, FBI warned.

US Manufacturing Surges to 3-Year High as Demand Strengthens, Hiring Picks Up

America’s manufacturing sector activity shot up to a 39-month high in August, driven by a surge in domestic and export demand for U.S. factory goods.

Chip Stocks Fall on Reports White House Seeking Equity in Exchange for Grants

Share prices of semiconductor companies fell following reports the Trump admin is considering taking equity stakes in exchange for federal funding.

Judge Declares Alina Habba’s Roles as US Attorney for New Jersey ‘Unlawful’

A federal judge found that Alina Habba, a former attorney to Trump, has been unlawfully serving as the top federal prosecutor in New Jersey since July.

US, EU Unveil Trade Deal Details, Capping Tariffs and Unlocking Billions in Energy and Tech Purchases

US and EU published details of trade framework caping most U.S. tariffs on European exports at 15% and commits bloc to purchases of American energy, tech, and defense equipment.

Trump Buys $100 Million in Bonds Since Return to White House

President Donald Trump has been an active investor in the bond market since returning to the White House in January.
spot_img

Related Articles