Imposter app mimics LastPass, sneaky backdoor aims Mac users

February 10, 2024
1 min read

In a recent incident, a malicious app impersonating the LastPass password manager was found on Apple’s App Store. Although the app has been removed, LastPass is working with Apple to understand how it passed their security mechanisms. LastPass believes that this app was a deliberate attempt to target LastPass users.

Bitdefender has also discovered a new backdoor targeting MacOS users. This macOS backdoor, called Trojan.MAC.RustDoor, is based on the Rust programming language and is posing as a Visual Studio update. Researchers have identified possible ties to the BlackBasta and ALPHV ransomware gangs.

Meanwhile, French health insurance companies have suffered a cyberattack that compromised data belonging to over 33 million people. The compromised data includes personal information such as marital status, date of birth, and social security number.

Lastly, Ivanti has disclosed another vulnerability in its Connect Secure and Policy Secure products. This vulnerability allows for authentication bypass and affects the company’s gateways. A patch is available to address the issue.

Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and