Search
  • mobisec8

CALISTO DETECTED INSTALLING BACKDOOR ON MACOS


Calisto is a backdoor trojan for macOS believed to be a forerunner of the Proton family of malware.

Although Calisto is written in Swift, it uses a number of similar techniques to its Proton offspring. Notable is the choice of a fake AntiVirus product as an installer.

Whereas a recent Proton trojan picked on Symantec, Calisto targets Intego users instead.

Calisto appears to be able to run on macOS versions as far back as 10.9 Mavericks, but it’s behaviour varies depending on both the operating system version and the device’s settings.



Read the full post on SentinelOne blog and contact us for more info on how to protect your organization from current threats: info@mobisec.co.il

7 views
  • Grey Facebook Icon
  • Grey LinkedIn Icon

154 Menachem Begin Rd., Tel-Aviv

2017 Mobisec Technologies . All rights Reserved