Mac and Windows Devices Pelted with New Threats

The Mac threat

• The first malware, an adware variant of Pirrit (first detected on Windows systems back in 2014), is packed with various anti-detection capabilities and fakes as a Safari extension.
• Despite the threat, Thomas Reed, director of Mac & Mobile at cybersecurity firm Malwarebytes, said M1-powered Mac users need not worry about this malware.
• The narrative appeared to take a turn after the disclosure of the second malware targeting the M1 chips by the analysts of Red Canary.
• Dubbed Silver Sparrow, this mysterious piece of adware was found recently in at least 30,000 devices across 153 countries with prime targets in Canada, France, Germany, the U.K, and the U.S.
• The malware has two versions - one targeting Intel-based Macs and the other capable of infecting both the older and M1-based devices.
• As noticed by experts, actors use JavaScript API to execute suspicious commands, which is a rarity in the macOS malware world.

The Windows threat

• In this campaign, about 40 hackers used 100 different email sending services to target users in over 30 different countries.
• The malware is most probably the creation of two French-based threat actors - Apocaliptique and Nitrix.
• The actors made more than $5,000 in one and a half months just by selling the malware.
• As per experts, APOMacroSploit builder weaponizes Excel documents that are capable of bypassing Windows Antimalware Scan Interface (AMSI), antivirus software, and even Gmail and other email-based phishing detection.

Malware attacks making ripples

• A joint cybersecurity advisory warned against the AppleJeus malware, a threat activity by the Lazarus group targeting Mac devices while masquerading as a crypto trading software.
• Researchers uncovered one of the largest Monero cyptojacking attacks on Windows and Linux devices by WatchDog malware operators.

The bottom line