The security researchers of Trend Micro have recently detected that the XCSSET malware that has been outlined to attack the macOS operating system got updated.
The analysts noted that the new updated version consists of a new feature, that enables the stealing of private data from different applications, which also includes the Google Chrome browser and the Telegram messenger.
However, this malware has been implementing different attacks since August 2020, and according to the analysts, this malware has various skills, like:-
How XCSSET Malware Steals Information?
Now the big question arises here that how this malware steals the data? Since it has been implementing various operations since August 2020, the security researchers detected that its first version initially accumulates data from different apps and transfers them back to back its command-and-control (C&C) server.
However, the cybersecurity experts were not aware of how the threat actors use the stolen data.
The new updated version has targeted Telegram, and here the main motive of the malware is to decreasing the folder ~/Library/GroupContainers/6N38VWS5BX.ru.keepcoder.Telegram” into a. ZIP file, and then later they upload the supposed file to a C&C server.
Apart from Telegram, this new version of XCSSET malware has also targeted the Chrome browser of Google.
The experts have also found some steps that will help to find the main motiv ..
Support the originator by clicking the read the rest link below.
