URL has been copied successfully!
Sapphire Sleet macOS Malware Abuses curlosascript Execution for Multi-Stage Payload Delivery
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Sapphire Sleet macOS Malware Abuses curlosascript Execution for Multi-Stage Payload Delivery


Tags: , , , ,

Sapphire Sleet’s latest macOS campaign uses crafted .scpt AppleScript lures that pipe curl output directly to osascript, enabling a compact, multi-stage payload chain that executes entirely within Script Editor and evades many built”‘in macOS protections. The infection begins with a socially engineered lure fake SDK or update AppleScript files such as Zoom SDK Update.scpt or […] The post Sapphire Sleet macOS Malware Abuses curl-to-osascript Execution for Multi-Stage Payload Delivery appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/sapphire-sleet-macos-malware/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. New XCSSET Malware Targets macOS Users Through Infected Xcode Projects
  2. macOS Malware Abuses Fake Google Update for Persistence
  3. XCSSET macOS malware reappears with new attack strategies, Microsoft sounds alarm
  4. New ClickFix Attack Targeting Windows and macOS Users to Deploy Infostealer Malware