Microsoft on Wednesday shed light on a previously undocumented Mac trojan that it said has undergone several iterations since its first appearance in September 2020, effectively granting it an "increasing progression of sophisticated capabilities."
The company's Microsoft 365 Defender Threat Intelligence Team dubbed the new malware family "UpdateAgent," charting its evolution from a barebones information stealer to a second-stage payload distributor as part of multiple attack waves observed in 2021.
"The latest campaign saw the malware installing the evasive and persistent Adload adware, but UpdateAgent's ability to gain access to a device can theoretically be further leveraged to fetch other, potentially more dangerous payloads," the researchers said.
The actively in-development malware is said to be propagated via drive-by downloads or advertisement pop-ups that masquerade as legitimate software like video applications and support agents, even as the authors have made steady improvements that have transformed UpdateAgent into a progressively persistent piece of malware.
Chief among the advancements include the capability to abuse existing user permissions to surreptitiously perform malicious activities and circumvent macOS Gatekeeper controls, a security feature that ensures only trusted applications from identified developers can be installed on a system.
In addition, UpdateAgent has been found to take advantage of public cloud infrastructure, namely Amazon S3 and CloudFront services, to host its second-stage payloads, including adware, in the form of .DMG or .ZIP files.
Once installed, the Adload malware makes use of ad injection software and man-in-the-middle (MitM) techniques to intercept and reroute users' internet traffic through the attacker's servers to insert rogue ads into web pages and search engine results to increase the chances of multiple infections on the devices.
"UpdateAgent is uniquely characterized by its gradual upgrading of persistence techniques, a key feature that indicates this trojan will likely continue to use more sophisticated techniques in future campaigns," the researchers cautioned.
Read more- Hacker Tools Apk Download
- Hak5 Tools
- What Are Hacking Tools
- Hak5 Tools
- Pentest Recon Tools
- Hacker Tools 2020
- Best Hacking Tools 2020
- Pentest Tools Linux
- Hack Tools For Mac
- Github Hacking Tools
- Nsa Hacker Tools
- Hacking Tools Download
- Pentest Tools Framework
- Hackrf Tools
- Hacker Tools For Mac
- Hacking Tools Github
- Physical Pentest Tools
- Termux Hacking Tools 2019
- Hack Tools For Windows
- Hacking Tools Hardware
- Hack Tool Apk
- Hacking Tools Kit
- Hacker Tools Free Download
- How To Make Hacking Tools
- Pentest Tools For Android
- Pentest Tools
- Pentest Tools Online
- What Are Hacking Tools
- Pentest Tools Find Subdomains
- Pentest Tools Find Subdomains
- Pentest Tools Tcp Port Scanner
- Pentest Tools Framework
- World No 1 Hacker Software
- Pentest Tools Website
- Computer Hacker
- Hacking Tools
- Hack Tools For Ubuntu
- Hacking Tools Hardware
- Hack Website Online Tool
- Top Pentest Tools
- Pentest Tools Alternative
- Hack Tool Apk No Root
- Kik Hack Tools
- Top Pentest Tools
- Kik Hack Tools
- Best Pentesting Tools 2018
- Hack App
- Hacking Tools Name
- Hacker Tools Software
- Pentest Tools List
- Hacker Tool Kit
- Hacking Tools Hardware
- Pentest Tools For Mac
- Hacking Tools For Beginners
- Hacking Tools For Beginners
- Tools 4 Hack
- Pentest Automation Tools
- Hacking Tools Usb
- Kik Hack Tools
- Pentest Tools Website
- Hacking Tools For Windows
- Tools For Hacker
- Pentest Tools Subdomain
- Hack Tools
- Hacker Tool Kit
- Hacking Tools And Software
- Hacker Tools Linux
- New Hacker Tools
- Tools 4 Hack
- Hacking Tools Pc
- Pentest Tools List
- Hack Tools For Windows
- Hack Tools Mac
- Physical Pentest Tools
- Hack And Tools
- Hack App
- Pentest Tools Github
- Hack Tools For Ubuntu
- Hacking Tools Github
- Pentest Tools List
- Hack Rom Tools
- Computer Hacker
- Hacking Tools For Windows
- Free Pentest Tools For Windows
- Pentest Tools Website
- Hack Tools Online
- Hackers Toolbox
- Hacking Tools Software
- Hacking Tools For Windows Free Download
- Hack Rom Tools
- Hacker Search Tools
- Pentest Tools Website
- Pentest Reporting Tools
- Pentest Tools Linux
- Hacking Tools For Windows Free Download
- Pentest Tools For Android
- Hacker Tools Github
- Hacking Tools Free Download
- Hacker Tools Online
- Hacking Tools For Beginners
- Pentest Tools Find Subdomains
- Pentest Box Tools Download
- Pentest Tools Find Subdomains
- Hak5 Tools
- Hacking Tools 2019
- Pentest Tools Nmap
- Free Pentest Tools For Windows
- Pentest Tools Url Fuzzer
- Pentest Tools Download
- Pentest Box Tools Download
- Hacker Tools Free
- How To Make Hacking Tools
- Pentest Tools Url Fuzzer
- Github Hacking Tools
- New Hack Tools
- Hacking Tools Windows
- Computer Hacker
- Top Pentest Tools
- Pentest Tools Android
- Hack Tools 2019
- Hacking Tools For Games
- Termux Hacking Tools 2019
- Hack Tools For Pc
- Pentest Recon Tools
- Top Pentest Tools
- Hack Apps
- Hacking Tools For Beginners
- Hacker Tools For Mac
- Hack Apps
- Nsa Hack Tools
- Growth Hacker Tools
- Hacker Tools Github
- Nsa Hack Tools Download
- Pentest Tools Subdomain
- Pentest Reporting Tools
- Hacker Tools Linux
- Hacking Tools For Games
- Hacking Tools For Beginners
- Hacker Tools Free Download
- Pentest Tools Apk
- What Is Hacking Tools
- Pentest Tools Bluekeep
- New Hack Tools
- Growth Hacker Tools
- Hack Apps
- Pentest Tools For Windows
- Hacker Tools Apk
- Hacker Tools 2020
- Hacking App
- Hack Tools
- Hacks And Tools
- Kik Hack Tools
- Hacker Tools Github
- Hack Tool Apk No Root
- Hacker Tools Software
- Hacking Tools For Beginners
- Hacking Tools Hardware
- Hacking Tools Windows 10
No comments:
Post a Comment