Security News > 2021 > November > MacOS Zero-Day Used against Hong-Kong Activists

MacOS Zero-Day Used against Hong-Kong Activists
2021-11-12 15:07

Google researchers discovered a MacOS zero-day exploit being used against Hong Kong activists.

Google's researchers were able to trigger the exploits and study them by visiting the websites compromised by the hackers.

The sites served both iOS and MacOS exploit chains, but the researchers were only able to retrieve the MacOS one.

The zero-day exploit was similar to another in-the-wild vulnerability analyzed by another Google researcher in the past, according to the report.

The zero-day exploit used in this hacking campaign is "Identical" to an exploit previously found by cybersecurity research group Pangu Lab, Huntley said.

Pangu Lab's researchers presented the exploit at a security conference in China in April of this year, a few months before hackers used it against Hong Kong users.


News URL

https://www.schneier.com/blog/archives/2021/11/macos-zero-day-used-against-hong-kong-activists.html