CyberWire Daily cover image

CyberWire Daily

NotLockBit takes a bite out of macOS.

Oct 23, 2024
Jérôme Segura, Sr. Director of Research at Malwarebytes, shares insights on the alarming rise of NotLockBit, a new macOS malware mimicking LockBit tactics. He discusses how scammers are exploiting platforms like GitHub to advertise fake AppleCare+ services, highlighting vulnerabilities associated with mobile apps. The conversation sheds light on the accountability of tech firms in the face of increased privacy violations and examines the federal government’s push for better information sharing in cybersecurity. It's a must-listen for anyone concerned about modern digital threats!
37:02

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

  • The emergence of NotLockbit ransomware targeting macOS exemplifies the growing threat landscape as attackers leverage advanced tactics for data exfiltration.
  • Recent vulnerabilities in popular mobile apps highlight the urgent need for developers to prioritize secure coding practices to prevent unauthorized data access.

Deep dives

Emerging Threats: NotLockbit Ransomware

A new macOS malware called NotLockbit has emerged, mimicking the infamous Lockbit ransomware while targeting both Windows and macOS. This ransomware employs standard tactics such as data theft and file encryption, ensuring only the attacker can decrypt the files using RSA encryption. NotLockbit also utilizes hard-coded AWS credentials for data exfiltration, sending victim data to an Amazon S3 bucket. Researchers warn that this malware is still actively being developed, indicating the potential for future threats from this adversary.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner