Apple fait une nouvelle mise à jour de son antimalware XProtect http://dlvr.it/TLgVsh #Apple #XProtect

Apple fait une nouvelle mise à jour de son antimalware XProtect http://dlvr.it/TLgVsh #Apple #XProtect
Apple a mis à jour XProtect, l'anti-malware de macOS http://dlvr.it/TKKCXK #Apple #XProtect
Apple a mis à jour son antimalware XProtect, comme elle le fait régulièrement http://dlvr.it/TKBDSw #Apple #XProtect
Banshee Stealer: The Malware That Outsmarts Apple's XProtect
A new variant of Banshee, the notorious macOS info-stealing malware, has found a clever way to evade detection by leveraging Apple's own encryption methods. As this malware evolves, it poses a signifi...
https://news.lavx.hu/article/banshee-stealer-the-malware-that-outsmarts-apple-s-xprotect
Ever wonder what malware macOS can detect and remove without help from third-party software? Apple continuously adds new malware detection rules to Mac’s built-in XProtect suite.
#apple #macos #malware #antivirus #xprotect
https://9to5mac.com/2025/01/02/what-malware-your-mac-can-remove/
We pushed an update to the MilestonePSTools #powershell module this week making it even easier to do bulk camera imports for #XProtect using CSV and Excel files.
You can import changes to existing hardware too! Check out the docs and this quick write-up https://www.milestonepstools.com/blog/2024/08/23/updates-to-import-vmshardware/
I just published a new #xprotect plugin for those who need to display web content alongside cameras and other physical security or building management elements. Try it for free for 30 days, or forever if using Essentials+ or a test license https://github.com/joshooaj/WebContentPlugin
XProtect, introduced in 2009 as part of macOS X 10.6 Snow Leopard, has become a suite of tools Apple uses to address the rising problem of malware on its platform.
Google and Apple provide data about the malware they catch in their app store review processes. Both of them talk about "sideloading" as a security risk. Notably, neither Apple nor Google provide data on how much malware comes from outside of their app stores. Nor do they provide data-based analysis of which is the bigger threat: malware that makes it into their app stores or from other channels. They have this data, they track installs and active apps plus there is #PlayProtect #XProtect etc 2/
" macOS Malware 2023: Navigating the New Threat Landscape
"
Apple's XProtect recently updated to version 2173, introducing rules for Atomic Stealer and Adload. However, 2023 has unveiled novel methods to compromise Macs, leaving users vulnerable unless additional protective measures are taken. Key insights:
Shift in Malware Behavior: Many macOS malware families in 2023 have ditched persistence. Infostealers, for instance, achieve their goals in a single execution, stealing user data and then transmitting it to a remote server.
Sophisticated Social Engineering: Threat actors are employing advanced social engineering tactics. RustBucket malware, for example, lured victims with a business deal, urging them to download a 'proprietary' PDF viewer, which in reality was malware.
Public Offensive Security Tools: Tools like Geacon, which wraps Cobalt Strike capabilities, are now being seen in macOS malware. Open-source red teaming tools like Mythic and Poseidon have also been spotted in recent campaigns.
LOLBins Techniques: "Living off the orchard" techniques are on the rise in macOS. Built-in tools like system_profiler, sw_vers, and curl are being exploited for malicious purposes.
Abusing Open Source Software: JokerSpy malware, discovered in July 2023, began its infection through a trojanized QR code generator, QRLog. This malware was found in enterprise breaches, including a major cryptocurrency exchange.
Complex Multi-Stage Malware: The Smooth Operator campaign, a sophisticated supply chain attack, compromised businesses via 3CX's call routing software client. The malware was designed for stealth, gathering limited data and then self-deleting.
While Apple is enhancing its malware detection capabilities, third-party solutions are still crucial for comprehensive protection against both common and advanced threats. SentinelOne offers a robust platform for macOS threat detection and remediation.
Source: SentinelOne
Tags: #macOS #Malware #CyberSecurity #XProtect #Infostealers #SocialEngineering #OffensiveSecurity #LOLBins #OpenSource #SentinelOne
In Final Cut & Co: Warnung vor #Cryptojacking durch gecrackte Mac-Apps | heise online https://www.heise.de/news/In-Final-Cut-Co-Warnung-vor-Cryptojacking-durch-gecrackte-Mac-Apps-7527273.html #Malware #cryptocurrencies #cryptocurrency #cryptomining #Apple #macOS #XProtect
Final Cut Pro kostenlos runterladen? Aber bitte ohne Malware!
#Malware #AdobePhotoshop #FinalCutPro #Kryptomining #LogicPro #Mac #macOS #Monero #ThePirateBay #torrent #XMRig #XProtect https://tarnkappe.info/artikel/malware/final-cut-pro-kostenlos-runterladen-aber-bitte-ohne-malware-265921.html
Tech Wrap-Up for August 9, which is #BookLoversDay. #XProtect on #macOS, what to do about a #databreach, #Chrome keeps your #privacy, #Linux 6.0 coming, #Android 13 on your phone, and #WhatsApp privacy updates, all in today's wrap-up. https://www.techhelpkb.com/tech-wrap-up-8-9-2022/?utm_source=mastodon&utm_medium=toot&utm_campaign=wrapup
New #AdLoad malware variant slips through #Apple's #XProtect defenses
Interesting:
https://www.pensar.co.uk/blog/are-macs-more-secure-than-pcs