Hackers Target Apple’s Mac Users With New Malware Hidden in Popular Apps

Contact Your Elected Officials

Cybercriminals embedded malicious code and remote-control tools in software used for server management and secure connections.

A new variant of macOS malware known as ZuRu is targeting Apple users by embedding malicious code and a hacking tool into popular utilities used for remote connections and server management, cybersecurity researchers have warned.

First discovered in 2021, ZuRu has evolved over time and can now infect more apps and in new ways, cybersecurity firm SentinelOne said in a July 10 alert. Notably, the latest strain only works on Macs running the Sonoma 14.1 operating system, which Apple launched in October 2023, or Sequoia, its latest operating system.

Earlier versions of ZuRu were found hidden inside both pirated and legitimate copies of popular tools used by developers and IT professionals such as SecureCRT, Navicat, and Microsoft Remote Desktop for Mac. Most recently, the malware was found in a trojanized version of Termius, an app used for managing remote servers and secure network connections.

“This recent sample uses a new method to trojanize legitimate applications,” wrote Phil Stokes and Dinesh Devadoss, cybersecurity researchers at SentinelOne. They noted that the Trojanized version of Termius has had malicious code added to it, along with a helper program called a command-and-control (C2) implant, which allows attackers to remotely control infected Macs.

This particular C2 implant is based on Khepri, an open-source hacking tool designed to let attackers run commands and gather information from a compromised system, the researchers said. Once installed, the implant gives hackers powerful capabilities, including transferring files to or from the victim’s computer, running or controlling programs on the infected Mac, and executing commands and capturing whatever results or data those commands produce.

“The latest variant of macOS.ZuRu continues the threat actor’s pattern of trojanizing legitimate macOS applications used by developers and IT professionals,” the researchers noted. They added that attackers appear to have shifted from earlier, simpler methods to embedding malware in helper applications, likely in an effort to bypass modern security detection measures.

By Tom Ozimek

Read Full Article on TheEpochTimes.com

The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

MyPillow’s CEO Mike Lindell Wins 2 Court Cases

A federal court tossed the $5M ruling against Mike Lindell, saying arbitrators rewrote the rules of his 2021 Cyber Symposium challenge.

What’s The Most Realistic Scenario In Which The West Might Replace Zelensky?

Yermak and Budanov agreed with the Anglo-American Axis’ proposal to replace Zelensky with Zaluzhny and “reset” Ukraine’s ties with the West.

Earned vs. Owed

Not since the Donner Party has a group of people so badly misinterpreted the circumstances of their situation like the players of the WNBA.

Just How American are America’s Elite Schools?

Their exteriors may be ivy clad, but that façade on America’s elite universities cloaks secrecy, power politics and globalist attitudes as well.

Multiple Democrats Playing Defense

There is a news situation going on that is...

NASA, SpaceX Launch Crew-11 to Space Station

SpaceX’s Falcon 9 rocket took off on Aug. 1, as the 11th act of the NASA commercial crew program set off for the International Space Station.

US Economy Adds 73,000 New Jobs in July, Fewer Than Market Estimates

U.S. economy added smaller-than-expected number of new jobs last month as labor market cools. Fed. govt. jobs fell by 12,000 and, down by 84,000 this year.

Declassified Durham Report Annex Sheds New Light on Origins of Russia Probe: Grassley

Sen. Grassley released declassified annex to John Durham’s 2023 report into FBI’s investigation into allegations of Trump campaign–Russia ties.

Appeals Court Hears Arguments Over Whether to Block Trump’s Tariffs

Multiple judges on an appeals court questioned whether a decades-old law Trump invoked had provided him the authority on tariffs he said it did.

Bessent Says Trump Accounts for Kids Are Backdoor ‘For Privatizing Social Security’

Treasury Sec Scott Bessent said Trump Accounts are “a back door for privatizing Social Security,” but the admin is committed to protecting Social Security.

Trump Says Canada’s Backing of Palestinian Statehood Threatens US Trade Deal

President Trump said it would be “very hard” to reach a trade agreement with Canada after PM Carney announced plans to recognize a Palestinian state.

Trump Imposes 25 Percent Tariff on India Plus Unspecified Penalty

Trump said US to impose a 25% tariff on Indian goods and unspecified penalties, citing India's high trade barriers and reliance on Russian energy and arms.

White House Launches Health Information Sharing Initiative

Making Health Technology Great Again centers on giving patients full access to their own health records and making the data useful for both doctors and patients in managing disease.
spot_img

Related Articles