HQ/EMEAFind out how we can help your business
Researchers discovered a new hVNC malware that could hack macOS circulating in the cybercriminal landscape. Since April, the alleged malware developers have sold the newly discovered malware on a Russian cybercriminal forum.
A threat actor named ‘RastaFarEye’ claims that the potential buyers of the new tool can get an upgraded version of the hVNC malware with more malicious capabilities if they opt to provide additional payment.
Based on reports, the new malware could provide its operators with an elusive remote-control capability over a compromised device. Moreover, the researchers believe that the primary purpose of the malware is to steal sensitive data, such as credentials and financial and personal information, on its targets.
The researchers also noted that the threat actor that endorses the malware has been a member of the cybercrime forums since 2021. RastarFarEye is a notorious hacker with a significant record of malicious activity.
In addition, the actor is known for offering the Windows variant of the hVNC malware and EV certificate generation services.
The new hVNC malware is the latest addition to malicious tools that target Mac systems.
Experts explained that the hVNC malware is the latest threat added to the increasing threat trend targeting Mac users this month.
A similar threat called Realst also popped out this month and can empty wallets and steal passwords from macOS-based devices. The attackers could devise a variant to target macOS 14 Sonoma while the info-stealer was still in its developmental stage.
On the other hand, the Charming Kitten threat group also revealed malware called NokNok that could target macOS systems through lnk files. Lastly, ShadowVault is another macOS malware that could harvest troves of data, such as usernames, passwords, credit card details, and crypto wallet data.
Cybersecurity experts advise everyone to adopt robust cybersecurity measures to remain safe against such attacks since hVNC could allow threat actors to access devices remotely without their victims’ awareness.
Therefore, Mac users should also update their versions to 13.2 or newer. Users should download software solutions from trusted sources or directly from the developer to avoid pirated or cracked software that could compromise a device.
