en
Get a Demo
Navigation Arrow Left Back
Navigation Close
Get a Demo
New MacOS Malware XcodeSpy Targets Xcode Developers With EggShell Backdoor 6
labs
Security & Intelligence

New macOS Malware XcodeSpy Targets Xcode Developers with EggShell Backdoor
Phil Stokes /

Targeting software developers is one route to a successful supply chain attack. Now threat actors are going after Apple developers through the Xcode IDE.

Read More
20 Common Tools Techniques Used By MacOS Threat Actors Malware 6
labs
Security Research

20 Common Tools & Techniques Used by macOS Threat Actors & Malware
Phil Stokes /

Threat hunting on macOS? These are the tools malware most often leverages, with ITW examples, MITRE behavioral indicators and links to further research.

Read More
FADE DEAD Adventures In Reversing Malicious Run Only AppleScripts 2
labs
Security Research

FADE DEAD | Adventures in Reversing Malicious Run-Only AppleScripts
Phil Stokes /

We show how to statically reverse run-only AppleScripts for the first time, and in the process reveal new IoCs of a long-running macOS Cryptominer campaign.

Read More
APT32 Multi Stage MacOS Trojan Innovates On Crimeware Scripting Technique 7
labs
Adversary

APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique
Phil Stokes /

Vietnamese-linked APT group OceanLotus have innovated and imitated in their latest macOS trojan, while also leaving a mysterious hard-coded calling card.

Read More
1 5 6 7 8 9 17