This report analyzes new macOS and Windows malware named RustDoor and GateDoor that are disguised as legitimate software updates. The malware communicates with C2 servers and can steal information, download files, and execute commands. The malware infrastructure appears related to the ShadowSyndicate cybercrime group.

Click here for details.