The entry point of XCSSET malware is still unknown to researchers.
Newly discovered malware by Trend Micro targets the macOS system by spreading via Xcode developer projects. Researchers explain the exploit as ‘two zero-day vulnerabilities’ wherein, the first one steals cookies through a flaw in the data vaults behavior and the second one abuses the development version of the Safari browser.
The malware named XCSSET has the ability to steal sensitive information and also launch ransomware attacks. It does this by abusing pre-installed Safari and other browsers to steal victims’ data.
Threat actors through this can easily access information from popular applications such as Skype, Evernote, WeChat, and Telegram. Not only this, but the exploit can take screenshots and also upload files from the compromised systems to the hacker’s selected server.
Furthermore, XCSSET is capable of encrypting files and showcase ransom notes if given the command. But this is just the tip of the iceberg.
See: FBI and NSA expose Russian State hacking tool for Linux systems
Another interesting aspect regarding XCSSET is that it can launch universal cross-site scripting (UXSS) attacks by injecting JavaScript code into the websites browsed by the target.
This means it can modify users’ entire web browsing experience and steal confidential information, giving the assailant the opportunity to replace cryptocurrency addresses, access payment card info from Ap ..
Support the originator by clicking the read the rest link below.
