A new data wiper and info-stealer called EvilQuest is using ransomware as a decoy to steal files from macOS users. The victims get infected after downloading trojanized installers of popular apps from torrent trackers.
While not common, ransomware has been known to target the macOS platform in the past, with KeRanger, FileCoder (aka Findzip), and Patcher being three other examples of malware designed to encrypt Mac systems.
EvilQuest was first spotted by K7 Lab malware researcher Dinesh Devadoss and analyzed by Malwarebytes’ Director of Mac & Mobile Thomas Reed, Jamf Principal Security Researcher Patrick Wardle, and
A data breach broker is selling databases containing user records for 14 different companies he claimed were breached by hackers in 2020.
When a company is breached, threat actors will typically download accessible databases, including account records. These databases are then sold directly to other threat actors, or the hackers utilize data breach brokers to sell them on their behalf.
Over the past month, a known and reputable data breach broker has been selling numerous databases on hacker forums that they state were acquired in data breaches conducted in 2020.
Each of the fourteen databases being sold contains different information,