lazarusholicFeb 26, 2025
"RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector" published by PaloaltoNetworks. #ContagiousInterview, #Koi, #RustDoor, #macOS, #AlluringPisces, #DPRK, #CTI https://unit42.paloaltonetworks.com/macos-malware-targets-crypto-sector/
RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector

Koi Stealer and RustDoor malware were used in a campaign linked to North Korea. This activity targeted crypto wallet owners. Koi Stealer and RustDoor malware were used in a campaign linked to North Korea. This activity targeted crypto wallet owners.

Unit 42
gtbarrySep 27, 2024

North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware

Cybersecurity researchers are continuing to warn about North Korean threat actors' attempts to target prospective victims on LinkedIn to deliver malware called RustDoor.

#NorthKorea #LinkedIn #RustDoor #malware #cryptocurrency #crypto #dex #scam #security #cybersecurity #hackers #hacking

https://thehackernews.com/2024/09/north-korean-hackers-target.html

North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware

North Korean threat actors are using LinkedIn to spread RustDoor malware, targeting professionals in the crypto sector.

The Hacker News
securityaffairsMay 26, 2024
#Malware-laced #JAVS Viewer deploys #RustDoor implant in supply chain attack
https://securityaffairs.com/163683/hacking/supplay-chain-attack-javs-viewer.html
#securityaffairs #hacking
Malware-laced JAVS Viewer deploys RustDoor implant in supply chain attack

Malicious actors compromised the JAVS Viewer installer to deliver the RustDoor malware in a supply chain attack.

Security Affairs
Anonymous πŸˆοΈπŸΎβ˜•πŸ΅πŸ΄πŸ‡΅πŸ‡Έ May 24, 2024

🚨 A shocking supply chain attack impacting courtroom video recording software. Malicious actors backdoored the installer for JAVS Viewer v8.3.7 to deliver #RustDoor malware.

https://thehackernews.com/2024/05/courtroom-software-backdoored-to.html

#hacking #malware #cybersecurity

Courtroom Software Backdoored to Deliver RustDoor Malware in Supply Chain Attack

Courtroom software compromised! Tampered installer for JAVS Viewer v8.3.7 has been caught distributing RustDoor backdoor.

The Hacker News
83r71nMay 24, 2024

Justice AV Solutions' (JAVS) Viewer software, version 8.3.7, was found to contain a backdoored installer, allowing attackers to take control of affected systems. This issue was identified by Rapid7, leading to a recommendation for users to completely re-image their systems and reset credentials. The backdoored installer was traced back to a binary downloaded from the official JAVS site, which also contained encoded PowerShell scripts linked to the GateDoor/Rustdoor malware family. JAVS responded quickly, removing the compromised version from their site and conducting a full internal audit. They advised users to verify digital signatures on JAVS software and to stay updated with software releases and security patches.

https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/

#cybersecurity #javs #vulnerability #backdoor #gatedoor #rustdoor #malware #powershell #script #rapid7

CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack | Rapid7 Blog

Rapid7 has determined that users with Justice AV Solutions (JAVS) Viewer v8.3.7 installed are at high risk and should take immediate action.

Rapid7
gtbarryFeb 16, 2024

New macOS Backdoor Linked to Prominent Ransomware Groups

The malware, dubbed RustDoor, impersonates Visual Studio, supports both Intel and Arm architectures, and appears to have been circulating since November 2023, remaining undetected for roughly three months.

#apple #macbook #VisualStudio #macos #RustDoor #backdoor #ransomware #malware #security #cybersecurity #infosec #hackers #hacking #hacked

https://www.securityweek.com/new-macos-backdoor-linked-to-prominent-ransomware-groups/

New macOS Backdoor Linked to Prominent Ransomware Groups

Written in Rust, the new RustDoor macOS backdoor appears linked to Black Basta and Alphv/BlackCat ransomware.

SecurityWeek
Scripter Feb 12, 2024
Alert: New Stealthy "RustDoor" Backdoor Targeting Apple macOS Devices
https://thehackernews.com/2024/02/alert-new-stealthy-rustdoor-backdoor.html #Cybercrime #Backdoor #RustDoor #macOS
Alert: New Stealthy "RustDoor" Backdoor Targeting Apple macOS Devices

A new backdoor called RustDoor is targeting macOS systems. This Rust-based malware, linked to ransomware families, steals sensitive data.

The Hacker News
ricardo Feb 11, 2024

New #RustDoor #macOS malware impersonates Visual Studio update ⚠️

https://www.bleepingcomputer.com/news/security/new-rustdoor-macos-malware-impersonates-visual-studio-update/

New RustDoor macOS malware impersonates Visual Studio update

A new Rust-based macOS malware spreading as a Visual Studio update to provide backdoor access to compromised systems uses infrastructure linked to the infamous ALPHV/BlackCat ransomware gang.

BleepingComputer
securityaffairsFeb 10, 2024
#macOS #Backdoor #RustDoor likely linked to #Alphv/#BlackCat #ransomware operations
https://securityaffairs.com/158942/malware/macos-backdoor-rustdoor.html
#securityaffairs #hacking #malware
macOS Backdoor RustDoor likely linked to Alphv/BlackCat ransomware operations

Bitdefender Researchers linked a new macOS backdoor, named RustDoor, to the Black Basta and Alphv/BlackCat ransomware operations.

Security Affairs
Review SpaceFeb 9, 2024

Bitdefender Reveals a New Backdoor Threat Targeting MacOS: https://www.reviewspace.info/bitdefender-reveals-a-new-backdoor-threat-targeting-macos

#Bitdefender #macOS #Trojan #RustDoor #Cybersecurity #Malware #Backdoor #SecurityThreat #TechNews #ReviewSpace

Bitdefender Reveals a New Backdoor Threat Targeting MacOS

Insights into a Sophisticated Rust-Based Malware Threat and Its Implications for macOS Security

Review Space