An updated version of Rustbucket, a macOS malware family, has been discovered that can establish persistence and avoid detection by security software.
It’s the first time anyone’s seen this kind of malware specifically targeted macOS users.
The infection chain consists of a macOS installer file that installs a backdoored, yet functional, PDF reader.
A significant aspect of the attacks is that the malicious activity is triggered only when a weaponized PDF file is launched using the rogue PDF Reader.
Elastic Security Labs have published a report detailing how this new version of rustbucket works.
It also describes how it leverages a dynamic network infrastructure methodology for command-and-control.
Researchers have pulled back the curtain on an updated versionof an Apple macOS malware called Rustbuckets that comes with improved capabilities to establish persistence and evades detection by anti-malware software.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply