A newly discovered remote access tool that can give enable hackers to compromise Apple operating systems has been found on the dark web. The tool can enable malicious actors to steal personal information and cryptocurrencies.
According to Apple news outlet 9to5mac, a hack tool called HVNC (Hidden Virtual Network Computer) is being sold on the dark web.
On Aug. 2, the outlet reported that cybersecurity firm Guardz found Russian hackers offering the hidden VNC tool for sale. It has been “specifically designed to give attackers full access to Macs,” it stated.
In a blog post detailing the threat, Guardz asked OpenAI’s ChatGPT about mac-OS threats that lurk on the dark web.
The security researchers delved into the prominent Russian cybercrime forum “Exploit.” They discovered that the Mac hack tool has been available since April 2023.
It added that the title of the ad selling the tool bears a peculiar “$100,000 Deposit” prefix and states:
“For a lifetime price of $60,000, the threat actor will provide you with a malicious tool that supports persistence, runs without requesting any permission from the user, has a reverse shell plus remote file manager, and was tested on a wide array of macOS versions from 10 up to 13.2.”
Guardz noted that the HVNC tool is very sophisticated. Furthermore, it runs in stealth mode, meaning most tools Mac tools designed to protect them will not detect it.
Moreover, the seller has placed $100,000 in escrow as a guarantee that the malware works as promised, according to Guardz.
“The $100,000 deposit (that equals 3.33 Bitcoins) helps the other cybercriminals to understand that the person behind this profile is a high-profile actor.”
The pseudonymous ‘RastaFarEye’ also has ‘seller’ status on the hacker forum.
The tool isn’t designed specifically to steal crypto, but once a hacker has compromised a system, it would be very easy to do so.
More Malicious Mac Threats
Security experts advised keeping Macs up to date with the latest operating system version. The HVNC tool only works on Macs running macOS Venture 13.2 or older software.
The tool is the latest threat to Apple software which aficionados have historically claimed is immune to viruses and malware.
In late July, another crypto-malware called Realst was being used by hackers to steal from macOS devices. The malicious software operated through fake Web3 games such as Brawl Earth and WildWorld.
Meanwhile, SlowMist researchers warned of new phishing attacks on Apple devices targeting crypto holders.
In February, a wave of crypto-jacking malware called XMRig spread across the Apple ecosystem, stealing crypto.
Disclaimer
In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content.
Source link
Will Elon Musk’s Comment Drive Dogecoin’s Price to $0.20?
Dogecoin’s recent price surge has captured investor attention, with the meme coin rallying sharply over the past 24 hours. This increase followed a tweet from Elon Musk, often referred to as the “DOGEFather,”…