Best News Network

Why Mac users should be careful about CloudMensis spyware – Times of India

Apple recently announced a new lockdown mode that will help keep spyware away from iPhones, iPads and Mac devices. However, the lockdown mode will come with iOS 16, iPadOS 16 and macOS Ventura. While the lockdown mode may thwart spyware, existing Mac users should be worried about a new spyware doing the rounds.
Security researchers at Eset have discovered a previously unknown macOS backdoor that spies on users of compromised Macs. The spyware is called CloudMensis, and as per the security researchers, uses the public cloud storage services to communicate back and forth with its operators.


How is CloudMensis dangerous for Mac users?

Hackers can gather information from the victims’ Macs by exfiltrating documents and keystrokes, listing email messages and attachments, listing files from removable storage, and screen captures. Once CloudMensis gains access to a Mac and its administrative privileges, it runs a first-stage malware that retrieves a more “featureful second stage from a cloud storage service.”
In the next stage, attackers can access documents, screenshots, email attachments, and other sensitive data.
Eset security researchers, however, have said that the distribution of the spyware is rather limited right now. As of now, “no undisclosed vulnerabilities (zero days) were found to be used by this group during our research,” said Eset researchers. Though the researchers said that keeping your Mac up-to-date software can help keeping the spyware at bay.
“We still do not know how CloudMensis is initially distributed and who the targets are. The general quality of the code and lack of obfuscation shows the authors may not be very familiar with Mac development and are not so advanced. Nonetheless, a lot of resources were put into making CloudMensis a powerful spying tool and a menace to potential targets,” explained ESET researcher Marc-Etienne Léveillé, who analysed CloudMensis.

Stay connected with us on social media platform for instant update click here to join our  Twitter, & Facebook

We are now on Telegram. Click here to join our channel (@TechiUpdate) and stay updated with the latest Technology headlines.

For all the latest Technology News Click Here 

 For the latest news and updates, follow us on Google News

Read original article here

Denial of responsibility! NewsAzi is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.