filmov
tv
Hijacking the BuddyBuild installer to install a keylogger and enable remote SSH access
Показать описание
The demo shows a man-in-the-middle attack in action. There is a Raspberry PI in the network (attacker), and I use my Mac without any special configuration. All the attacker needs is to be in the same network, no matter if it's an open or closed network.
The attacker will do a man-in-the-middle attack to modify the BuddyBuild installer while it's being downloaded to insert malicious code.
In this video you can see how the attacker installs a keylogger on the user's Mac, and with it, enable remote SSH access, making it easy for the attack to take over control over your whole Mac. This allows the attack to access data like your full keychain, documents, source files and API keys.
The attacker will do a man-in-the-middle attack to modify the BuddyBuild installer while it's being downloaded to insert malicious code.
In this video you can see how the attacker installs a keylogger on the user's Mac, and with it, enable remote SSH access, making it easy for the attack to take over control over your whole Mac. This allows the attack to access data like your full keychain, documents, source files and API keys.
0:01:07
0:02:48
0:00:52
0:07:47
0:01:51
0:01:48
0:03:24
0:08:05
0:01:51
0:07:09
0:02:01
0:04:49
0:03:56
0:11:36
0:05:06
0:01:07
0:00:58
0:00:57
0:01:32
0:01:55
0:02:48
0:01:52
0:09:48
0:09:05