SYMBOLCOMMON_NAMEaka. SYNONYMS
osx.cdds (Back to overview)

CDDS

aka: Macma

Google TAG has observed this malware being delivered via watering hole attacks using 0-day exploits, targeting visitors to Hong Kong websites for a media outlet and a prominent pro-democracy labor and political group.

References
2021-11-15SentinelOnePhil Stokes
Infect If Needed | A Deeper Dive Into Targeted Backdoor macOS.Macma
CDDS
2021-11-11Objective-SeePatrick Wardle
OSX.CDDS a sophisticated watering hole campaign drops a new macOS implant!
CDDS
2021-11-11GoogleErye Hernandez, Google Threat Analysis Group
Analyzing a watering hole campaign using macOS exploits
CDDS

There is no Yara-Signature yet.