This PDF malware attacks Apple Mac users! DON’T fall for it; know what experts say | Tech News

This PDF malware attacks Apple Mac users! DON’T fall for it; know what experts say

Cybersecurity researchers have found this malicious malware hidden inside a PDF for job offers! Apple Mac users are in danger from this malware. Know the details here.

By: HT TECH
| Updated on: Aug 18 2022, 17:28 IST
Apple MacBook Air M2 256GB First Glance: New everything
Apple MacBook
1/6 Apple MacBook Air M2 brings a new minimalist design from the 14-inch MacBook Pro. The sides are now thicker and have rounded edges, while the Apple logo grows bigger on the lid. (Amritanshu / HT Tech)
image caption
2/6 Apple MacBook Air M2 gets a new 13.6-inch LCD display with slim bezels and a new notch for holding the 1080p webcam. The display is brighter than the M1 MacBook Air display. (Amritanshu / HT Tech)
image caption
3/6 Apple MacBook Air M2 also gets a new keyboard with larger keycaps, even for the Fn keys. The Touch ID fingerprint scanner on the Sleep Key is still present. (Amritanshu / HT Tech)
Apple MacBook
4/6 Apple MacBook Air M2 comes with macOS Monterey out of the box. However, it will get macOS Ventura update later in the year with the new features such as Stage Manager, Spotlight Search, and more. (Amritanshu / HT Tech)
image caption
5/6 Apple promises up to 18 hours of battery life on the MacBook Air M2, which is the same as the MacBook Air M1. The 256GB variant gets you the 30W adapter whereas the 512GB variant gets you the 36W dual port charger. It also supports the 67W fast charger that does 0-50 percent in 30 minutes. (Amritanshu / HT Tech)
image caption
6/6 Other than the MagSafe port for charging, you get two USB-C ports with support Thunderbolt 3, USB-4 and USB 3.1 Gen 2 speed formats. There is also a 3.5mm audio jack. (Amritanshu / HT Tech)
Apple MacBook
View all Images
Are you using an Apple Mac? You should know about this PDF malware. (Amritanshu / HT Tech)

Cybersecurity researchers have discovered a new phishing attack that deploys dangerous malware to macOS devices. So far, this malware was limited to the Windows platform, but in the latest development, security researchers at cybersecurity company ESET found that North Korean hackers from the Lazarus group have been using a malicious file for macOS to lure the employees into the financial technology sector.

In the past, the hackers of the Lazarus group have used several tactics to create fake job offers, and recently, they used a PDF file loaded with malware propagated with details about a hiring position at Coinbase. The fake document named “Coinbase_online_careers_2022_07” was generated to bring the attention of job seekers and loaded a malicious DLL on the device. It ultimately allows the hackers to take control of the infected device. ESET, the cybersecurity company has also found that malware is ready to infect the macOS systems.

Who is under threat from this malware?

“A signed Mac executable disguised as a job description for Coinbase was uploaded to VirusTotal from Brazil. This is an instance of Operation In(ter)ception by #Lazarus for Mac,” the cybersecurity researchers informed via tweet. They further informed that the malicious PDF file is compiled for Macs with both Intel and Apple silicon. This means your Mac device is under threat whether you have a newer model or an old model of the Mac.

Once the malware is transported to your device, it drops three files on your system, namely: the bundle FinderFontsUpdater.app, the downloader safarifontagent, and a decoy PDF called “Coinbase_online_careers_2022_07” PDF. The researchers noticed that the fake malicious document file was signed on July 21.

However, this is not the first time that the group of Lazarus hackers have targeted Mac users. Last year, a similar campaign targeting macOS users was identified while using the same fake job profile offer tactic but with a different PDF file.

Thankfully, Apple has revoked the certificate on August 12, the cybersecurity team of ESET confirmed. However, the application was not notarized - an automatic process that Apple uses to check software for malicious components.

Follow HT Tech for the latest tech news and reviews , also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 18 Aug, 17:26 IST
NEXT ARTICLE BEGINS