CyberWire Daily

When macOS gets frostbite. [Research Saturday]

Listen Later

Jaron Bradley, Director of Jamf Threat Labs, is sharing their work on "ChillyHell: A Deep Dive into a Modular macOS Backdoor." Jamf Threat Labs uncovers a newly notarized macOS backdoor called ChillyHell, tied to past UNC4487 activity and disguised as a legitimate applet.

The malware showcases robust host profiling, multiple persistence mechanisms, timestomping, and flexible C2 communications over both DNS and HTTP. Its modular design includes reverse shells, payload delivery, self-updates, and a brute-force component targeting user credentials.

The research can be found here:

  • ChillyHell: A Deep Dive into a Modular macOS Backdoor

    Learn more about your ad choices. Visit megaphone.fm/adchoices

    ...more
    View all episodesView all episodes
    Download on the App Store
    CyberWire DailyBy N2K Networks
    • 4.8
    • 4.8
    • 4.8
    • 4.8
    • 4.8

    4.8

    1,004 ratings

    More shows like CyberWire Daily

    View all
    Hacked by Hacked

    Hacked

    185 Listeners

    Security Now (Audio) by TWiT

    Security Now (Audio)

    2,005 Listeners

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

    372 Listeners

    Risky Business by Patrick Gray

    Risky Business

    372 Listeners

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

    652 Listeners

    Smashing Security by Graham Cluley

    Smashing Security

    319 Listeners

    Click Here by Recorded Future News

    Click Here

    419 Listeners

    Darknet Diaries by Jack Rhysider

    Darknet Diaries

    8,077 Listeners

    Cybersecurity Today by Jim Love

    Cybersecurity Today

    177 Listeners

    Hacking Humans by N2K Networks

    Hacking Humans

    316 Listeners

    CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

    CISO Series Podcast

    187 Listeners

    Practical AI by Practical AI LLC

    Practical AI

    200 Listeners

    Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

    Defense in Depth

    73 Listeners

    Cybersecurity Headlines by CISO Series

    Cybersecurity Headlines

    139 Listeners

    The 404 Media Podcast by 404 Media

    The 404 Media Podcast

    390 Listeners