Shulou(Shulou.com)11/24 Report--

CTOnews.com, July 4, the number of malware on Apple's macOS platform is increasing, and now security company Elastic researchers have exposed a malicious Trojan horse called RustBucket, which lurks in the victim's device and automatically adjusts its configuration to avoid antivirus software security detection, which is difficult to detect.

▲ image source RustBucket it is reported that the Trojan uses AppleScript to load relevant malicious components when users open a specific website, and then cache the Trojan locally. The hacker then started the Trojan through NSTask and collected the victim's private information.

The researchers point out that in order to continuously collect user information, hackers will add the Trojan to a boot folder called LaunchAgents and constantly adjust their configurations to avoid detection of antivirus software.

The researchers said that the antivirus engine on the malware analysis site VirusTotal could not detect the Trojan horse, so it is extremely difficult for users to find this malicious Trojan horse in the actual process, and CTOnews.com friends can find relevant information here.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.