Mac Trojan targets Tibetan activist groups

Powered by SC Magazine
 

Command and Control chatter encrypted, answered by a human.

Researchers at a security firm have spotted espionage malware targeting users of Mac computers.

The attacks are taking advantage of a Microsoft Word vulnerability, which affects both Windows and Mac platforms and was patched nearly three years ago, said Jaime Blasco, a researcher with AlienVault.

Since earlier this month, remote access trojans, or RATs, which are being sent in spear phishing emails containing a malicious Microsoft Word file, have been targeting pro-Tibet organisations -- with the goal of purging sensitive information without being detected.

"It is no surprise that Tibetan organisations are being targeted -- they have been for years -- and we continue to see Chinese actors breaking into numerous organisations with impunity," Blasco said.

He said that the latest campign targeted Macs was a sign that attackers would need to find ways to infiltrate platforms that traditionally have gone untouched.

Blasco said it was the first time he had seen Office files being used to deliver a trojan on the Mac OS X.

This article originally appeared at scmagazineus.com

Copyright © SC Magazine, US edition


Tags
 
 
 
Top Stories
Business-focused Windows 10 brings back the Start menu
Microsoft skips 9 for the "greatest enterprise platform ever".
 
Feeling Shellshocked?
Stay up to date with patching for the Bash bug.
 
Amazon forced to reboot EC2 to patch Xen bug
Rolling restarts over next week.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  66%
 
Advanced persistent threats
  4%
 
Unpatched or unsupported software vulnerabilities
  11%
 
Denial of service attacks
  6%
 
Insider threats
  12%
TOTAL VOTES: 1371

Vote