CyberSecurity news
FlagThis
Microsoft Threat@Microsoft Security Blog
//
The U.S. Department of Justice has indicted 12 Chinese individuals for over a decade of global hacking intrusions, including a breach of the U.S. Treasury last year. The individuals include eight staffers for the contractor i-Soon, two officials at China’s Ministry of Public Security, and two other alleged hackers belonging to the APT27 group, also known as Silk Typhoon. The group is accused of targeting U.S. state and federal agencies, foreign ministries across Asia, Chinese dissidents, and U.S.-based media outlets critical of the Chinese government.
Microsoft Threat Intelligence has detected a new variant of XCSSET, a macOS malware targeting Xcode projects, since 2022. This variant features enhanced obfuscation, updated persistence mechanisms, and new infection strategies. It steals and exfiltrates files and system/user information, including digital wallet data and notes. The malware's modular approach and encoded payloads make detection and removal challenging, even allowing it to remain fileless.
ImgSrc: www.microsoft.c
References :
Microsoft Threat Intelligence has detected a new variant of XCSSET, a macOS malware targeting Xcode projects, since 2022. This variant features enhanced obfuscation, updated persistence mechanisms, and new infection strategies. It steals and exfiltrates files and system/user information, including digital wallet data and notes. The malware's modular approach and encoded payloads make detection and removal challenging, even allowing it to remain fileless.
ImgSrc: www.microsoft.c
Share:
References :
- Microsoft Security Blog: New XCSSET malware adds new obfuscation, persistence techniques to infect Xcode projects
- Schneier on Security: Silk Typhoon Hackers Indicted
Classification:
- HashTags: #Cybersecurity #ThreatIntel #Malware
- Company: Microsoft
- Target: Organizations
- Attacker: Silk Typhoon
- Product: Security
- Feature: Vulnerabilities
- Malware: XCSSET
- Type: CyberCrime
- Severity: Major