BlueNoroff Hackers Backdoor Macs with New ObjCShellz Malware
North Korean Hacker Group Targets Apple Devices
Overt Operator
November 09, 2023
Image generated by DALLE
In a recent cyberattack, the notorious hacking group BlueNoroff has targeted Mac users with a new malware called ObjCShellz. This sophisticated backdoor malware allows the hackers to gain unauthorized access to the victims' Mac computers, putting their sensitive information at risk.
The attack exploits a vulnerability in the popular Looney Tunables Linux bug, which is commonly used by Mac users. By taking advantage of this bug, the hackers are able to steal cloud credentials, potentially accessing sensitive data stored in the cloud.
IT security company Veeam has issued a warning about critical bugs found in its Veeam ONE monitoring platform. These bugs could allow attackers to compromise the platform and gain unauthorized access to sensitive information. Veeam urges users to update their software to the latest version to mitigate the risk.
Another critical vulnerability has been discovered in the widely used Atlassian Confluence software. This vulnerability has been exploited by the Cerber ransomware group to launch ransomware attacks. The attackers are able to encrypt the victims' files and demand a ransom for their release. Users are advised to update their Confluence software to the latest version and ensure they have backup copies of their important files.
Microsoft has reported an issue with its Outlook.com email service, stating that some users are unable to send emails with attachments. The company is working to resolve the issue and advises affected users to try sending emails without attachments in the meantime.
In a separate incident, Microsoft has also discovered a zero-day flaw in the SysAid software, which is being exploited by the Clop ransomware group. The attackers are leveraging this vulnerability to gain unauthorized access to systems and encrypt files for ransom. Microsoft advises SysAid users to update their software and apply the necessary patches to protect against this threat.
Russian hackers have recently adopted a new technique called LOTL (Lateral movement, Obfuscation, Tunneling, and Lateral movement) to cause power outages. By infiltrating the systems of energy providers, these hackers are able to disrupt power supply and cause widespread chaos. Authorities are working to enhance cybersecurity measures to prevent such attacks.
OpenAI, the company behind the ChatGPT language model, has confirmed that ongoing outages are the result of distributed denial-of-service (DDoS) attacks. These attacks overload the system and make it inaccessible to users. OpenAI is actively working to mitigate the impact of these attacks and restore normal service.