The Threat actor group used two publicly available exploits (CVE-2018-4233, CVE-2018-4404) to deliver implants for macOS. Part of the CVE-2018-4404 exploit is likely borrowed from Metasploit framework. macOS version 10 was targeted using those exploits.
https://t.co/6FsBsVPD8S
ref:
https://t.co/IBoTAUyRDw
A recently identified #malware variant is being disseminated using the deceptive ClearFake delivery mechanism. This malicious software disguises itself as updates for both Apple's Safari browser and Google's Chrome browser. #protectyourprivacy@rooalston
https://t.co/f72dt6RYLv
A new malware campaign targeting Apple devices tricks users into downloading a fake browser update that steals your passwords.
Read about our latest research on this sophisticated malware in the Daily Mail. https://t.co/pGAiVRQsk6
Hackers now spreading Mac malware via fake browser updates — don’t fall for this. Feel free to safely ignore websites claiming you need to update your browser https://t.co/kkWcHVWnf8 #Apple#Mac#malware#Hackers#Hacking#Hacked#hackers#hacker
#Apple’s macOS is being targeted by cybercriminals with an information-stealing malware, designed to steal passwords, browser cookies, and credit/debit card information.
https://t.co/aapipmEsLK