Objective-See Foundation

5K posts

Objective-See Foundation

@objective_see

🍎 🛡️ 🛠️ Open-Source Tools 📚 "The Art of Mac Malware" books 🫂 "Objective by the Sea" conference Support us on https://t.co/tuGceSeyiC 🙏

Maui, Hawaii Katılım Ekim 2011

1 Takip Edilen18.7K Takipçiler

Sabitlenmiş Tweet

Objective-See Foundation@objective_see·14 Şub

Our Valentine's Day gift 💝 objectivebythesea.org/v9/index.html Announcing Objective by the Sea (#OBTS) v9.0: 👩🏻‍💼 Train: Nov 15-17 👩🏻‍🏫 Talks: Nov 18-20 📍 Maui, Hawaii, 2026 CFP (talks & trainings) and tickets are now officially open! Hope to see you by the sea 🏝️ Special 🙏🏽 to @andyrozen!!

English

9.1K

Objective-See Foundation retweetledi

pablito.eth 🦇🔊 @ EthCC 🇫🇷@PabloSabbatella·8 Mar

BlockBlock v2.4.1 is out: Malware often installs itself persistently to ensure it is automatically executed upon restart or login. BlockBlock monitors common persistence locations and alerts whenever a new persistent component is added. It also alerts when pasting dangerous content in the terminal. By @objective_see @patrickwardle

English

2.9K

Objective-See Foundation retweetledi

Patrick Wardle@patrickwardle·10 Mar

techcrunch.com/2026/03/09/an-… Latest from @lorenzofb/@TechCrunch ...'confirming' Coruna's origins 📲🐛

English

6.3K

Objective-See Foundation retweetledi

Patrick Wardle@patrickwardle·6 Mar

Apple: “3rd-party security tools can’t run in the kernel because they might panic.” Also Apple: kicks us out and replaces us with their EndpointSecurity kext ...which can be trivially panicked from userland, taking down every security tool + the whole system (macOS 26.3.1)! 🙄

English

283

21.3K

Objective-See Foundation retweetledi

Jamie Levy🦉@gleeda·4 Mar

sanity checks by using known bodies of work is very powerful

English

Objective-See Foundation retweetledi

Moonlock Lab@moonlock_lab·4 Mar

Beware fake VCs on LinkedIn ❗️ Our latest Moonlock Lab report tracks a new #ClickFix campaign using fake Zoom/Meet links + a bogus Cloudflare CAPTCHA to trick victims into pasting malicious commands - cross-platform for macOS & Windows. Featuring findings by @malwrhunterteam and analysis by @L0Psec 🔎 Give it a read 👉 moonlock.com/fake-vcs-targe…

English

6.7K

Objective-See Foundation@objective_see·5 Mar

Stoked to see our former #OBTS student scholar @OliviaGalluccii crushing it at [un]prompted 🤩

Jamie Levy🦉@gleeda

listening to @OliviaGalluccii talk about using AI to maximize on her macOS vulnerability research at [un]prompted. Loving what she's done! unpromptedcon.org

English

2.8K

Objective-See Foundation retweetledi

Dan Guido@dguido·3 Mar

seatbelt-sandboxer > Generate minimal macOS Seatbelt sandbox configurations for applications github.com/trailofbits/sk…

English

9.1K

Objective-See Foundation retweetledi

Kyle Avery@kyleavery·4 Mar

I'm not sure when this started, but macOS seems to scan JXA scripts at runtime using the Yara rules in: /var/protected/xprotect/XProtect.bundle/Contents/Resources/XPScripts.yr

English

6.5K

Objective-See Foundation retweetledi

Andy Greenberg (@agreenberg at the other places)@a_greenberg·3 Mar

A full iOS exploit toolkit, "Coruna," has been found in the wild, hacking iPhones that visited infected websites, used by Russian spies targeting Ukrainians and thieves targeting Chinese crypto holders. And it may have been created for the US government. wired.com/story/coruna-i…

English

312

720

99.4K

Objective-See Foundation retweetledi

Mandiant (part of Google Cloud)@Mandiant·4 Mar

Coruna exploit kit is targeting iOS. Coruna leverages 23 exploits against Apple devices running iOS 13-17.2.1. It is being used for espionage, and by financially motivated actors to steal crypto. Update your iOS devices, and learn more about this threat: bit.ly/4rbeltc

Mandiant (part of Google Cloud) tweet media

English

119

359

116.6K

Objective-See Foundation retweetledi

Patrick Wardle@patrickwardle·3 Mar

A few weeks ago, Apple announce that "iPhone and iPad [are] approved to handle *classified* NATO information" 😂 Turns out even lowly cybercriminals were (ab)using 0days to hack Apple devices 🙈 wired.com/story/coruna-i…

English

5.2K

Objective-See Foundation@objective_see·3 Mar

Just released: BlockBlock v2.4 🆕 Notarization Mode ('All') Blocks any non-notarized program (even those w/o quarantine attributes). 🆕 Heuristics for 'ClickFix' Applies heuristics against pastes into terminals, blocking those deemed suspicious. objective-see.org/products/block…

English

5.2K

Objective-See Foundation retweetledi

POC_Crew@POC_Crew·3 Mar

#Zer0Con2026 - SPEAKER 💾 Csaba Fitzl(@theevilbit) & Gergely Kalman(@gergely_kalman) - “macOS Exploit Mixtape - Hack Like it’s the 80s” For more: zer0con.org

English

3.8K

Objective-See Foundation@objective_see·3 Mar

All our tools are 100% free and fully open-source! Take a peek at RansomWhere?: github.com/objective-see/… Since a lot changed in the rewrite, please report any issues or bugs 🙈

English

894

Objective-See Foundation@objective_see·3 Mar

Just released: RansomWhere? v2.0 By monitoring file entropy in real time, RansomWhere? can generically thwart ransomware! Version 2.0 is a full rewrite leveraging Apple’s Endpoint Security framework, plus a host of other improvements. Read more: patreon.com/posts/152088413

English

8.7K

Objective-See Foundation@objective_see·2 Mar

Stoked to see our #OBTS scholars crushing it! 🤩 Congrats to Pablo Redondo & Ismael Esquilichi on their recent talk, "macOS XPC Exploiting n-days for !(😄 && 💸)" at Hackon (@hackonurjc)!

English

1.6K

Objective-See Foundation retweetledi

Csaba Fitzl@theevilbit·19 Şub

🏝️🍎CFP and CFT is submitted. Regardless of the results, see you there!

Objective-See Foundation@objective_see

English

2.5K

Objective-See Foundation retweetledi

LiveOverflow 🔴@LiveOverflow·28 Şub

Oh! Objective See comes to Berlin!

Objective-See Foundation@objective_see

Announcing "Objective for the We" (#OFTW) v4.0 A free 🍏-security event empowering the next generation: 📍 Berlin 🗓️ July 30–31, 2026 Mahalo to the Hasso Plattner Institute (@HPI_DE) for hosting & making this possible!! ♥️ 🎟️ Invite-only → apply here: objective-see.org/oftw/v4.html

English

13.6K

Objective-See Foundation retweetledi

xiu@osint_barbie·27 Şub

🧵 1/ What a funny story how @g0njxa and I decided to start trading and download TradingView Premium for FREE! (freaking AI is gonna replace us, so...) xD Check this macOS stealer campaign that is using @Reddit karma-farming, allegedly compromised Indian tech company as a redirect, and a ClickFix trick to deliver the SHub Stealer that steals sensitive data, trojans your crypto wallets, and tries to persist disguised as Google Updater. But don't worry - if you have a Russian keyboard, it won't touch you :3

English

Objective-See Foundation retweetledi

Moonlock Lab@moonlock_lab·25 Şub

1/ We just triaged a #macOS sample that looks like a full-featured RAT with a twist - it uses the #Solana blockchain as part of its C2 workflow. Kindly shared by @malwrhunterteam. More below 🧵

English

7.8K

Keşfet

@patrickwardle @lorenzofb @TechCrunch @malwrhunterteam @L0Psec @OliviaGalluccii @theevilbit @gergely_kalman