2023-06-26 22:30:58
Recently, researchers from Bitdefender revealed to have discovered the JokerSpya powerful toolkit that can pose a major threat to your Mac.
Malicious files, according to the systems company, have three dangerous parts that can infiltrate systems, collect information, delete files and steal data; two of them work on Windows, Linux, and macOS computers.
In practice, both connect to a remote server secretly to receive commands, which allow you to obtain information about the computer, download and execute files, and execute specific commands.
More concerning is how JokerSpy affects Macs. The first part, called shared.dat, checks what kind of computer the user has and then connects to a remote server.
The second part is called sh.py and is capable of obtaining information about the system, checking what files the user has, deleting files, executing commands and stealing data. Still according to Bitdefender, it stores the settings in an encoded form to make it difficult to understand.
A third part, called xcc, was also discovered. The researchers claim that this one specifically targets newer versions of macOS, such as Monterey 12 (and later).
Its purpose is to verify that you have permission to do things like record your screen or access your files. Actually, it doesn’t contain the spying part itself, it just checks whether it can carry out the spying activities.
However, there is still no information about who may have created JokerSpy or how they manage to break into computers. Bitdefender said it is investigating whether they trick people into installing it or whether they send malicious messages to hack.
The discovery comes after the disclosure by Kaspersky, another cybersecurity company, about a similar attack called Triangulation, which has been targeting iPhones and iPads since 2019.
It shows that cyber criminals are becoming more cunning and are trying more and more to hack into Apple devices. All care is little! ????
1687826223
#JokerSky #malicious #software #targets #macOS