Malware for the macOS platform is still unusual enough that new variants often draw detailed analysis from researchers, especially when they seem to have unusual capabilities. That’s the case with Fruitfly, which first emerged earlier this year and was seen targeting medical research facilities. Recently, a new variant popped up and it appears to have been compromising victims for several years without any notice. Dennis Fisher spoke with researcher Patrick Wardle of Synack, who analyzed Fruitfly 2 by writing a custom command-and-control server for it, and is giving a talk on the results at Black Hat this week.
Music by Chris Gonsalves and Ken Montigny
