Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
RustDoor malware targets macOS users by posing as a Visual Studio Update
#1
Bug 
Quote:A new malware called RustDoor is targeting macOS users. The malware has been undetected for 3 months, and poses as a Microsoft Visual studio Update.

The malware was discovered by Bitdefender. A report by the popular antivirus maker says that RustDoor, is written in the Rust programming language. Bitdefender products identify the malware as Trojan.MAC.RustDoor.

RustDoor was first discovered in November 2023. Bitdefender says that the malware is still making rounds on the internet, the latest sample was spotted on February 2nd, 2024. The RustDoor malware impersonates a Visual Studio Update, to trick the user to download it. The fake update contains FAT binaries with Mach-0 files that can affect both Intel based Macs and Apple Silicon Macs. But the files do not have other parents like Application Bundles, Disk Images, possibly to remain hidden from the user.

The samples were identified by the following names: zshrc2, Previewers, VisualStudioUpdater, VisualStudioUpdater_Patch, VisualStudioUpdating, visualstudioupdate and DO_NOT_RUN_ChromeUpdates.

Fake updates are not a new technique, attackers have used such tricks in the past to infect Windows users. Over the past couple of years, they have also begun targeting Mac users with sophisticated methods. In fact, a similar trick was used to distribute the Atomic Stealer malware on macOS, which was delivered via fake browser updates. The unsuspecting user might believe it to be a genuine update for their browser, and the malware infects their computer.
...
Continue Reading
[-] The following 1 user says Thank You to harlan4096 for this post:
  â€˘ jasonX
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
Add End Task to Windows 11's Taskbar to ...
Microsoft's Window...harlan4096 — 12:03
AMD exec hints at AI-powered upscaling
AMD FSR with AI in...harlan4096 — 10:47
TriSun KeyMusic [for PC]
Typing the keyb...ismail — 04:53
Vovsoft JSON to CSV Converter [for PC]
Vovsoft JSON to C...ismail — 04:46
ASCOMP Secure Eraser Pro v 6 [for PC]
ASCOMP Secure Eraser...ismail — 04:41

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
avatar (42)gapedDow
avatar (36)snorydar
avatar (41)Hectorvot
avatar (49)knowhanPluts
avatar (37)Williamengiz
avatar (44)qaqapeti
avatar (42)battsourIonix
avatar (41)CedricSek
avatar (37)chasRex
avatar (41)slavrProck
avatar (43)Tyesharaike
avatar (47)TomeRerla
avatar (49)tersfargum
avatar (48)alfreExept
avatar (43)walllMIZ
avatar (39)oconyho
avatar (31)uteluxix
avatar (45)piafcflene
avatar (37)Matthewkah
avatar (36)Charlesfibre
avatar (40)napasvem
avatar (42)diploJeoca
avatar (36)francisnj3
avatar (41)artmaGoork
avatar (43)tukraNax
avatar (39)RichardCisee
avatar (38)ebenofit
avatar (36)ykazawu

[-]
Online Staff
There are no staff members currently online.

>