SentinelLabs reveals research on FERRET macOS malware

NewsDennis SellersFebruary 3, 2025

posted on Feb. 03, 2025 at 2:27 pmFebruary 3, 2025

SentinelLabs has revealed research into variants of FERRET, the DPRK-linked macOS malware.

SentinelLabs has revealed research into variants of FERRET, the DPRK-linked macOS malware. These new variants, labelled “FlexibleFerret,” currently remain undetected by Apple’s XProtect.

Here are the highlight from the research:

The FERRET malware is part of the North Korean Contagious Interview campaign, in which threat actors lure targets to install malware through the job interview process.
Last week Apple pushed a signature update to its on-device malware tool XProtect to block several variants of what it called the macOS FERRET family. Despite that, these newly uncovered variants remain undetected by XProtect.
Indicators present in the FERRET family of malware overlap with indicators seen in other DPRK campaigns, including the BlueNoroff Hidden Risk Threat Actor.

the authorDennis Sellers

Dennis Sellers is the editor/publisher of Apple World Today. He’s been an “Apple journalist” since 1995 (starting with the first big Apple news site, MacCentral). He loves to read, run, play sports, and watch movies.

SentinelLabs reveals research on FERRET macOS malware

Leave a Reply

View Articles By Topic

More

Archives

Categories

SentinelLabs reveals research on FERRET macOS malware

Leave a Reply

You Might Also Like

Apple TV+’s ‘Monarch: Legacy of Monsters’ named Best Adventure Television Series at Saturn Awards

Thanks to the European Union’s DMA, Apple has to allow the Hot Tubs porn app on iPhones

Apple’s 2025 Swift Student Challenge now taking admissions

Apple TV+’s canceled ‘Schmigadoon!’ Returns to live as a stage play

View Articles By Topic

More