Adrian Johnson
TLDR:
- LightSpy spyware discovered targeting macOS users
- Capabilities to infect multiple platforms like iOS, Android, Windows, macOS, Linux, and routers
Cybersecurity researchers have identified a previously undocumented macOS variant of LightSpy spyware, originally known to target Apple iOS users. The spyware is believed to have been active in the wild since January 2024, with a limited number of devices being affected. The macOS version of LightSpy utilizes publicly available exploits to deliver implants, employing a plugin-based system to collect various types of data from infected devices. The spyware can capture audio, photos, screen activity, and information from web browsers and iCloud Keychain. ThreatFabric’s analysis revealed that the spyware was designed to intercept victim communications and gather data on nearby network devices. This discovery comes amidst reports of Android devices being targeted by banking trojans and Pegasus spyware attacks on opposition activists and independent media in Eastern Europe.
