Security News > 2023 > September > MetaStealer malware is targeting enterprise macOS users
Enterprise macOS users are being targeted by attackers slinging new information-stealing malware dubbed MetaStealer.
Dmg - and the inclusion of words such as "Official Brief Description" indicate that the malware peddlers are going specifically after enterprise macOS users.
Once opened, it would reveal an app disguised as a PDF. "The applications inside the MetaStealer disk images contain the minimum required to form a valid macOS bundle, namely an Info.plist file, a Resources folder containing an icon image and a MacOS folder containing the malicious executable," noted Phil Stokes, threat researcher at SentinelOne.
"This specific targeting of business users is somewhat unusual for macOS malware, which is more commonly found being distributed via torrent sites or suspicious third-party software distributors as cracked versions of business, productivity or other popular software," Stokes said.
Apple's malware blocking tool XProtect offers limited protection: it stops some but not all MetaStealer samples.
With the growing popularity of macOS devices within enterprise environments, cybercriminals have been focusing on developing more macOS-specific malware.
News URL
https://www.helpnetsecurity.com/2023/09/13/macos-malware-enterprise-users/
Related news
- macOS HM Surf vuln might already be under exploit by major malware family (source)
- North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS (source)
- North Korean hackers use new macOS malware against crypto firms (source)
- North Korean Hackers Target macOS Using Flutter-Embedded Malware (source)
- New RustyAttr Malware Targets macOS Through Extended Attribute Abuse (source)