Cybersecurity researchers from Group-IB have discovered a new piece of malware, dubbed RustyAttr, which was likely developed by North Korean state-sponsored actors. RustyAttr uses macOS files’ extended attributes to deploy its payload, a technique believed to be novel. Although there were no reported victims, researchers suggest the malware was an experiment to explore new delivery and obfuscation methods on macOS devices.
Attack Techniques of Tycoon 2FA Phishing Kit Targeting Microsoft 365 and Gmail Accounts Detailed
The Tycoon 2FA phishing kit has emerged as one of the most sophisticated Phishing-as-a-Service platforms since its debut in August 2023, specifically engineered to circumvent
