Shulou(Shulou.com)11/24 Report--

CTOnews.com, July 27 (Xinhua)-- cyber security expert iamdeadlyz recently discovered malware called "Realst" and is now stealing cryptocurrency wallets on a large scale, even the developing macOS Sonoma is not immune.

The researchers found that hackers disguised "Realst" as a blockchain game and distributed it to users of Windows and macOS platforms.

Hackers used deceptive names such as Brawl Earth,WildWorld,Dawnland,Destruction,Evolion,Pearl,Olymp of Reptiles and SaintLegend.

Hackers promote these games on social media platforms, distribute access codes through private messages, and allow users to click on links directly and jump to the website to download fake game clients.

On the Windows platform, the game software is installed with "RedLine Stealer" malware; on the macOS platform, the "Realst" malware is installed.

SentinelOne, a network security company, analyzed 59 samples of Realst malware and identified 16 different variants, indicating that the malware is actively developing rapidly. The malware targets a variety of browsers and Telegram applications other than Safari.

Malware variants are divided into four main families according to their characteristics. They use different techniques to trick users into providing their passwords, and then use those passwords to steal data.

SentinelOne analyzed the malicious code and found that hackers are preparing for Apple's upcoming macOS 14 Sonoma.

The malware targets Mac devices and is disguised as a PKG installer or DMG disk file. These files contain malicious Mach-O files, but do not contain any genuine games or other bait software.

CTOnews.com has attached a more detailed report on the vulnerability. Interested users can click here.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.