Experts spotted a new variant of UpdateAgent macOS malware dropper written in Swift.
Researchers spotted a new variant of the UpdateAgent macOS malware dropper that was employed in attacks in the wild.
Researchers from the Jamf Threat Labs team have uncovered a new variant of the UpdateAgent macOS malware dropper. The new version is written in Swift and relies on the AWS infrastructure to host its malicious payloads.
The new variant of the malware supports common dropper features, including some minor system fingerprinting, endpoint registration, and persistence.
https://securityaffairs.co/wordpress/131391/malware/updateagent-macos-malware-swift.html
https://www.jamf.com/blog/updateagent-adapts-again/
@cRyPtHoN_INFOSEC_IT
@cRyPtHoN_INFOSEC_FR
@cRyPtHoN_INFOSEC_EN
@cRyPtHoN_INFOSEC_DE
@BlackBox_Archiv
