New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
14 November 2024
Threat actors have been found leveraging a new technique that abuses extended attributes for macOS files to smuggle a new malware called RustyAttr.
The Singaporean cybersecurity company has attributed the novel activity with moderate confidence to the infamous North Korea-linked Lazarus Group, citing infrastructure and tactical overlaps observed in connection with prior campaigns, including