Few readers of this blog will believe that there aren’t any security issues with
Apple
‘s
macOS
operating system, a point made rather unsubtly by yesterday’s discovery of a flaw that lets anyone log into a computer running
macOS High Sierra
– as the root user, no less.
Those who have been following Patrick Wardle’s work will certainly not be surprised by the fact that
Mac
s do have security issues. His
Objective See
tools are widely lauded for their ability to detect existing and new threats, while his
VB
talks in
2014
,
2015
and
2016
have all been very popular.
Patrick was back at VB2017 in Madrid, this time to look at a specific piece of
macOS
malware: FruitFly. He presented
a paper
in which he analysed the malware (more specifically, a variant of it discovered in January of this year) through a custom C&C server – a technique that will be of equal interest to researchers of malware on other platforms.
Today, we publish Patrick’s long and detailed paper in both
HTML
and
PDF
format; we have also uploaded the video of his presentation to our
YouTube
channel.
Leave a Reply