New macOS malware gives attackers backdoor access to Macs

216.73.216.6

New macOS malware gives attackers backdoor access to Macs

· Published 16/09/2024 09:56 · Modified 16/09/2024 10:28

Essential information

Published: 16/09/2024 09:56
Modified: 16/09/2024 10:28
Tags: 2024-09-16 backdoor hz rat macos malicious rat surveillance
Related entities: 25 observables, 10 techniques (mitre), 1 malware

Description

A new remote access Trojan (RAT) targeting macOS systems, dubbed HZ RAT, grants remote attackers complete control over infected Macs. The malware collects sensitive data, such as installed apps, user information from WeChat and DingTalk, and Google Password Manager credentials. It's suspected of spreading through malicious VPN apps and malvertising campaigns. Precautions like using trusted antivirus software and downloading apps from official sources are recommended to mitigate the threat.

External references

https://otx.alienvault.com/pulse/66e800e2c21ebe79acd9d5de