informa
/
Attacks/Breaches
Quick Hits

Mac RAT Rides 2FA App Onto Systems

The new macOS remote access Trojan from the Lazarus Group uses a two-factor authentication app as its delivery mechanism.

A new variant of the Dacls remote access Trojan (RAT) is on the loose, this time in a version specifically intended for macOS targets. According to the researchers at Malwarebytes who identified the new code, it's being carried onto victims' computers through a Trojanized two-factor authentication application, MinaOTP, mostly used by Chinese speakers on macOS.

Dacls is a RAT associated with North Korea's Lazarus Group (also known as Hidden Cobra and APT 38). First discovered in December 2019 by Qihoo 360 NetLab, Dacls came onto the scene as a fully functional RAT active on Windows and Linux systems.

For more, read here.

VIRTUALSUMMIT_DR20_320x50.jpg
 
 
 
 
Learn from industry experts in a setting that is conducive to interaction and conversation about how to prepare for that "really  bad day" in cybersecurity. Click for more information and to register

Recommended Reading:
Editors' Choice
Kirsten Powell, Senior Manager for Security & Risk Management at Adobe
Joshua Goldfarb, Director of Product Management at F5