[HackerNews] Hackers Exploit macOS Zero-Day to Hack Hong Kong Users with new Implant

Google researchers on Thursday disclosed that it found a watering hole attack in late August exploiting a now-parched zero-day in macOS operating system and targeting Hong Kong websites related to a media outlet and a prominent pro-democracy labor and political group to deliver a never-before-seen backdoor on compromised machines.
“Based on our findings, we believe this threat actor to be a

Source: Read More (The Hacker News)

You might be interested in …

Daily NCSC-FI news followup 2021-10-03

Sandhills online machinery markets shut down by ransomware attack www.bleepingcomputer.com/news/security/sandhills-online-machinery-markets-shut-down-by-ransomware-attack/ Industry publication giant Sandhills Global has suffered a ransomware attack, causing hosted websites to become inaccessible and disrupting their business operations. Sandhills Global is a US-based trade publication and hosting company catering to the transportation, agriculture, aircraft, heavy machinery, and technology industries. Numerous sources have […]

Read More

[ZDNet] ‘Praying Mantis’ threat actor targeting Windows internet-facing servers with malware

All posts, ZDNet

A Sygnia Incident Response team report found that the advanced and persistent threat actor was operating almost completely in-memory. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Hackers Using Microsoft Build Engine to Deliver Malware Filelessly

All posts, HackerNews

Threat actors are abusing Microsoft Build Engine (MSBuild) to filelessly deliver remote access trojans and password-stealing malware on targeted Windows systems. The actively ongoing campaign is said to have emerged last month, researchers from cybersecurity firm Anomali said on Thursday, adding the malicious build files came embedded with encoded executables and shellcode that deploy backdoors, Source: Read More […]

Read More