Tag: patrick wardle
-
VB2019 paper: Cyber espionage in the Middle East: unravelling OSX.WindTail
The Middle East continues to be a hotbed of APT activity. The WindShift group is one of many APT groups active in the region. First described by Darkmatter ’s Taha Karim in 2018, the group’s toolset includes malware for both Windows and macOS . Building on that research, Jamf ’s Patrick Wardle analysed the WindTail…
-
Alleged author of creepy FruitFly macOS malware arrested
It is almost a year since the mysterious FruitFly malware for macOS was discovered . Malware targeting macOS is still uncommon enough to be newsworthy, but FruitFly seemed particularly interesting: its spying capabilities, combined with the fact that it had managed to stay under the radar for many years, led many to postulate that it…
-
Alleged author of creepy FruitFly macOS malware arrested
It is almost a year since the mysterious FruitFly malware for macOS was discovered . Malware targeting macOS is still uncommon enough to be newsworthy, but FruitFly seemed particularly interesting: its spying capabilities, combined with the fact that it had managed to stay under the radar for many years, led many to postulate that it…
-
VB2017 paper: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server
Few readers of this blog will believe that there aren’t any security issues with Apple ‘s macOS operating system, a point made rather unsubtly by yesterday’s discovery of a flaw that lets anyone log into a computer running macOS High Sierra – as the root user, no less. Those who have been following Patrick Wardle’s…
-
VB2017 paper: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server
Few readers of this blog will believe that there aren’t any security issues with Apple ‘s macOS operating system, a point made rather unsubtly by yesterday’s discovery of a flaw that lets anyone log into a computer running macOS High Sierra – as the root user, no less. Those who have been following Patrick Wardle’s…
-
VB2017 preview: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server
Apart from the odd taxi driver loudly making the claim, the idea that “Macs don’t get malware” has become something of the past. Nevertheless, most security researchers focus on Windows (and increasingly Android ) malware, thus making malware that targets macOS still the odd one out. Someone who for years has focused almost exclusively on…
-
VB2017 preview: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server
Apart from the odd taxi driver loudly making the claim, the idea that “Macs don’t get malware” has become something of the past. Nevertheless, most security researchers focus on Windows (and increasingly Android ) malware, thus making malware that targets macOS still the odd one out. Someone who for years has focused almost exclusively on…
-
VB2016 video: Getting duped: piggybacking on webcam streams for surreptitious recordings
If you are going to be at RSA in San Francisco next week, we highly recommend you attend Patrick Wardle’s talk on OS X malware in 2016 – not just because it is important for Mac users to know that they too can fall victim to malware, but also because Patrick is an excellent speaker. We…
-
VB2016 video: Getting duped: piggybacking on webcam streams for surreptitious recordings
If you are going to be at RSA in San Francisco next week, we highly recommend you attend Patrick Wardle’s talk on OS X malware in 2016 – not just because it is important for Mac users to know that they too can fall victim to malware, but also because Patrick is an excellent speaker. We…
-
VB2016 ‘Last-Minute’ Papers Announced
With a little over three weeks to go until VB2016 , the conference programme is almost complete. We have a great selection of talks on the main programme, half a dozen Small Talks that we hope will lead to interesting discussions among participants, and a closing keynote from Morgan Marquis-Boire , the hacker, security researcher…