Cyber Threats to Mac Computers on the Rise
For Mac users, a new cyber security threat is on the horizon. A tool called ‘Geacon’, used by hackers to gain unauthorised access to computers, is becoming more popular. This tool is a version of ‘Cobalt Strike’, another tool hackers have used for a long time to target Windows computers. But now, they’re using Geacon to focus on Macs.
SentinelOne, discovered this increase in threats after noticing more and more Geacon attacks appearing on a site called VirusTotal, which is used to spot and analyse suspicious files. Some of these attacks were just tests, but others were real attempts by hackers to gain access to computers. SentinelOne has found two recent examples of these Mac based attacks;
1: A file called ‘Xu Yiqing’s Resume_20230320.app’, discovered on 5th April. It looked like a simple resume, but it was actually a program designed to download a Geacon attack onto a Mac computer. Once downloaded, the Geacon attack could carry out various tasks, including accessing the internet, encrypting and decrypting data, downloading more attacks, and stealing data.
2: A file pretending to be SecureLink (a popular app for secure remote support), discovered on 11th April, was designed to ask for access to many of the computer’s features, like the camera, microphone, and other data. Once granted access, it could steal this information.
Whilst attacks on macOS based systems are less common than those on Windows, they do happen. Our Endpoint Detection & Response solution is designed to protect businesses from exactly these types of attacks and is already securing our customers from these Geacon attacks. EDR uses advanced Artificial Intelligence (AI) and Machine Learning to monitor your endpoints (including macOS devices) for unusual, suspicious or malicious files or activity and block it in its tracks, keeping your users and your business safe.
Latest News Stories
US State Department Announces $10 Million Bounty for Information on Clop Ransomware Attacks
In an intensified effort to combat cyber crime, the US State Department's Rewards for Justice (RFJ) programme has revealed a bounty of up to $10 million for information linking the recent Clop ransomware attacks to a foreign government. The announcement follows a wide...
Hacker Group Suspected Behind Recent Microsoft Outage
Recent service disruptions experienced by Microsoft have been attributed to a DDoS Cyber Attack, with experts suggesting that the hackers behind the operation are most likely linked to a Russian-backed group. The group, known as Anonymous Sudan, which first surfaced...
Louisiana Driver’s License Holders Caught in Massive Cyber Attack
In the latest development in the ongoing fallout of the MOVEit Cyber Attack, every driver's license holder in the US state of Louisiana has been exposed to hackers in the enormous Cyber Attack. Personal details such as; Names, Addresses, and Social Security Numbers,...
Our Customers
Testimonials
Alan Wooler, ProAct
Stuart who attended is a spot on guy who knows his stuff and is very polite.
Dave, Kier
Always willing to help/go the extra mile.
Jeanette Addis, Principle Support Ltd
Very approachable, friendly team and fast response time. Thank you.