New Variant Of UpdateAgent Malware Infects Mac Computers With Adware

 Microsoft on Wednesday shed light on a previously undocumented Mac trojan that it said has undergone several iterations since its first appearance in September 2020, effectively granting it an "increasing progression of sophisticated capabilities."

The company's Microsoft 365 Defender Threat Intelligence Team dubbed the new malware family "UpdateAgent," charting its evolution from a barebones information stealer to a second-stage payload distributor as part of multiple attack waves observed in 2021.

"The latest campaign saw the malware installing the evasive and persistent Adload adware, but UpdateAgent's ability to gain access to a device can theoretically be further leveraged to fetch other, potentially more dangerous payloads," the researchers said.

The actively in-development malware is said to be propagated via drive-by downloads or advertisement pop-ups that masquerade as legitimate software like video applications and support agents, even as the authors have made steady improvements that have transformed UpdateAgent into a progressively persistent piece of malware.

Chief among the advancements include the capability to abuse existing user permissions to surreptitiously perform malicious activities and circumvent macOS Gatekeeper controls, a security feature that ensures only trusted applications from identified developers can be installed on a system.

In addition, UpdateAgent has been found to take advantage of public cloud infrastructure, namely Amazon S3 and CloudFront services, to host its second-stage payloads, including adware, in the form of .DMG or .ZIP files.

Once installed, the Adload malware makes use of ad injection software and man-in-the-middle (MitM) techniques to intercept and reroute users' internet traffic through the attacker's servers to insert rogue ads into web pages and search engine results to increase the chances of multiple infections on the devices.

"UpdateAgent is uniquely characterized by its gradual upgrading of persistence techniques, a key feature that indicates this trojan will likely continue to use more sophisticated techniques in future campaigns," the researchers cautioned.

More articles

1. Pentest Tools Tcp Port Scanner
2. Black Hat Hacker Tools
3. Hacker Tools Hardware
4. Hacking Tools And Software
5. Hacker Tools Mac
6. Hacking Tools And Software
7. Pentest Tools Port Scanner
8. Pentest Tools Find Subdomains
9. Easy Hack Tools
10. Pentest Tools Website Vulnerability
11. Hacker Tools
12. Hacking Tools Windows 10
13. Easy Hack Tools
14. Hacker Search Tools
15. Pentest Tools For Ubuntu
16. Hacker Tools Online
17. Pentest Tools Online
18. Pentest Tools Framework
19. Hacking Apps
20. Pentest Tools Subdomain
21. Computer Hacker
22. Best Hacking Tools 2020
23. Hacker Tools Windows
24. Pentest Tools For Android
25. Blackhat Hacker Tools
26. Hacking Tools And Software
27. Hack Tools Github
28. Pentest Tools Windows
29. How To Install Pentest Tools In Ubuntu
30. Nsa Hack Tools
31. Hacker Tools For Pc
32. Hacking Apps
33. Pentest Tools Website
34. Pentest Tools List
35. Pentest Tools Website Vulnerability
36. Hacker Tools For Pc
37. Hacker Search Tools
38. Pentest Tools Nmap
39. Game Hacking
40. How To Hack
41. Hackrf Tools
42. Hacking Tools Online
43. Hacker Tools Online
44. Hacking Tools For Pc
45. Hacker Tools
46. Hack Tools Pc
47. Hacking Tools Online
48. Hack Tools Mac
49. How To Hack
50. Hacking Tools Kit
51. Blackhat Hacker Tools
52. Hacker Tools Apk
53. Hacking Tools Usb
54. Hack Tools For Pc
55. Hack Tool Apk
56. Hacking Tools Hardware
57. Easy Hack Tools
58. Hacking Tools And Software
59. World No 1 Hacker Software
60. Pentest Tools Website Vulnerability
61. Hacking Tools
62. Github Hacking Tools
63. Hacker Tools 2020
64. Hacking Tools Hardware
65. Hack Tools
66. Game Hacking
67. Hacker Tools Linux
68. Hacking Tools Download
69. Hacking Apps
70. Pentest Tools Url Fuzzer
71. Tools For Hacker
72. Hacking Tools For Mac
73. Hacking Tools For Kali Linux
74. Hacking Tools For Beginners
75. Hacker Hardware Tools
76. Hack Tools Online
77. Free Pentest Tools For Windows
78. Hack Tools Mac
79. Pentest Tools Subdomain
80. Hack Tools For Windows
81. Hackrf Tools
82. Pentest Tools For Ubuntu
83. Pentest Tools Open Source
84. Hack Apps
85. Android Hack Tools Github
86. Tools 4 Hack
87. Wifi Hacker Tools For Windows
88. Pentest Tools Android
89. How To Make Hacking Tools
90. Hacker Tools Free
91. New Hacker Tools
92. How To Make Hacking Tools
93. Pentest Recon Tools
94. Pentest Tools Apk
95. Hacker
96. Free Pentest Tools For Windows
97. Pentest Reporting Tools
98. Pentest Tools
99. Growth Hacker Tools
100. Hack Apps
101. Hack Tools Pc
102. Hacking Tools 2020
103. Hacker Tools Mac