16 matches found
Shlayer and Bundlore MacOS Malware Strains – How Uptycs EDR Detection Can Help
Adware strains Shlayer and Bundlore are the most common malware in macOS – although they have slight variations, they have long invaded and bypassed Xprotect, Notarization, Gatekeeper, and File Quarantine, all security features pre-built into macOS. The Uptycs threat research team has tracked the...
Apple Patches Zero-Day MacOS Bypass Bug
Apple patched a zero-day vulnerability in its MacOS that can bypass critical anti-malware capabilities and which a variant of the notorious Mac threat Shlayer adware dropper already has been exploiting for several months. Security researcher Cedric Owens first discovered the vulnerability, tracke...
Hackers Exploit 0-Day Gatekeeper Flaw to Attack macOS Computers
Security is only as strong as the weakest link. As further proof of this, Apple released an update to macOS operating systems to address an actively exploited zero-day vulnerability that could circumvent all security protections, thus permitting unapproved software to run on Macs. The macOS flaw,...
Feds: K-12 Cyberattacks Dramatically on the Rise
The feds have warned that cyberattacks on the K-12 education sector are ramping up alarmingly. In an alert from the FBI and the Cybersecurity and Infrastructure Security Agency CISA, officials said that data from the Multi-State Information Sharing and Analysis Center MS-ISAC shows that in August...
Apple Accidentally Notarizes Shlayer Malware Used in Adware Campaign
Apple accidentally approved one of the most popular Mac malware threats – OSX.Shlayer – as part of its security notarization process. The Apple notary service is an automated system on recent macOS versions that scans software ranging from macOS apps, kernel extensions, disk images and installer...
Apple Accidentally Approved Malware to Run on MacOS
The ubiquitous Shlayer adware has picked up a new trick, slipping past Cupertino's “notarization” defenses for the first time...
Shlayer Mac Malware Returns with Extra Sneakiness
A fresh variant of the Shlayer Mac OSX malware with advanced stealth capabilities has been spotted in the wild, actively using poisoned Google search results in order to find its victims. According to researchers at Intego, the malware, like many malware samples before it, is purporting to be an...
VMware Carbon Black TAU Threat Analysis: Shlayer (macOS)
Following our initial reporting of this threat, Carbon Black’s Threat Analysis Unit TAU has continued following the Shlayer family of malware and monitoring changes adopted by this campaign. Although detection by antivirus vendors has improved over the past year, the malware authors continue to...
Watch out for Shlayer malware targeting Mac devices
By Waqas Researchers believe Shlayer malware is the most widespread macOS threat... This is a post from HackRead.com Read the original post: Watch out for Shlayer malware targeting Mac devices...
The Sneaky Simple Malware That Hits Millions of Macs
How the Shlayer Trojan topped the macOS malware charts—despite its “rather ordinary” methods...
Shlayer, No. 1 Threat for Mac, Targets YouTube, Wikipedia
The malvertising-focused trojan known as Shlayer has burbled to the top of the malware heap when it comes to targeting Mac users. It made up 29 percent of all attacks on macOS devices in Kaspersky’s telemetry for 2019, making it the No. 1 Mac malware threat for the year. To spread, it has been...
Shlayer Trojan attacks one in ten macOS users
For close to two years now, the Shlayer Trojan has been the most common threat on the macOS platform: in 2019, one in ten of our Mac security solutions encountered this malware at least once, and it accounts for almost 30% of all detections for this OS. The first specimens of this family fell int...
ThreatList: Apple Adware, Phishing, APT Attacks Threaten macOS Users
While macOS is often touted as “safer” on the cybersecurity front compared to Windows-based systems, cybercriminals are in fact increasingly targeting Apple’s ecosystem. The number of attacks on macOS users through malicious and potentially unwanted programs has been increasing annually since 201...
Mac-Focused Malvertising Campaign Abuses Google Firebase DBs
A malvertising group named VeryMal that targets Mac users has changed up its tactics, ditching steganography as its obfuscation technique. Instead, it’s using ad tags that fetch a payload from Google Firebase in order to redirect users to malicious pop-ups. Confiant estimates that close to 1...
TAU Threat Intelligence Notification: New macOS Malware Variant of Shlayer (OSX) Discovered
Carbon Black’s Threat Analysis Unit TAU recently discovered a new variant of a family of macOS malware which was first discovered in February of 2018 by researchers from Intego. TAU has obtained new samples of this malware and observed downloads of the malware from multiple sites, primarily...
Malware in Ad-Based Images Targets Mac Users
A massive adware campaign has so far impacted up to a million Mac users, using a tricky steganography technique to hide malware in image files. Researchers at Confiant and Malwarebytes said the attacks have been running since Jan. 11, using ads on the web and steganography to spread; steganograph...