..HZ RAT is a remote access Trojan (RAT)—a tool that gives an attacker full remote administration privileges. The earliest known version of this RAT was observed in 2022 targeting Windows PCs, and now it has arrived on the Mac.
In general, an attacker who controls a RAT can send commands to an infected system just as though they were sitting in front of it. This can potentially include downloading and running additional tools and malware, taking screenshots, logging keystrokes, and more. RATs also allow attackers to do all the typical things stealer malware does—i.e. collecting and exfiltrating sensitive data…
..one known Trojan horse that installs HZ RAT is a maliciously modified version of OpenVPN Connect, a common VPN app…It’s possible that this Trojan horse might be distributed through means such as malicious Google Ads that appear at the top of search results..
|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
New macOS malware HZ RAT gives attackers backdoor access to Macs
- This topic has 3 replies, 2 voices, and was last updated 8 months, 4 weeks ago.
AuthorViewing 1 reply threadViewing 1 reply thread
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Windows 11 ad from Campaign Manager in Windows 10 (Awaiting moderation)
by 2 hours, 33 minutes ago
-
Phishers extract Millions from HMRC accounts..
by 11 hours, 12 minutes ago
-
Windows 10 22H2 Update today (5 June) says up-to-date but last was 2025-04
by 13 hours, 4 minutes ago
-
Thoughts on Malwarebytes Scam Guard for Mobile?
by 16 hours, 13 minutes ago
-
Mystical Desktop
by 16 hours, 26 minutes ago
-
Meta and Yandex secretly tracked billions of Android users
by 11 hours, 12 minutes ago
-
MS-DEFCON 2: Do you need that update?
by 6 hours, 37 minutes ago
-
CD/DVD drive is no longer recognized
by 1 day, 7 hours ago
-
Windows 11 24H2 Default Apps stuck on Edge and Adobe Photoshop
by 1 day, 10 hours ago
-
North Face and Cartier customer data stolen in cyber attacks
by 1 day, 8 hours ago
-
What is wrong with simple approach?
by 1 day, 1 hour ago
-
Microsoft-Backed Builder.ai Set for Bankruptcy After Cash Seized
by 1 day, 19 hours ago
-
Location, location, location
by 10 hours, 25 minutes ago
-
Cannot get a task to run a restore point
by 1 day, 21 hours ago
-
Frustrating search behavior with Outlook
by 1 day, 12 hours ago
-
June 2025 Office non-Security Updates
by 2 days, 8 hours ago
-
Secure Boot Update Fails after KB5058405 Installed
by 10 hours, 45 minutes ago
-
Firefox Red Panda Fun Stuff
by 2 days, 8 hours ago
-
How start headers and page numbers on page 3?
by 2 days, 18 hours ago
-
Attack on LexisNexis Risk Solutions exposes data on 300k +
by 1 day, 21 hours ago
-
Windows 11 Insider Preview build 26200.5622 released to DEV
by 3 days, 3 hours ago
-
Windows 11 Insider Preview build 26120.4230 (24H2) released to BETA
by 3 days, 3 hours ago
-
MS Excel 2019 Now Prompts to Back Up With OneDrive
by 2 days, 16 hours ago
-
Firefox 139
by 2 days, 9 hours ago
-
Who knows what?
by 1 day, 11 hours ago
-
My top ten underappreciated features in Office
by 3 days, 3 hours ago
-
WAU Manager — It’s your computer, you are in charge!
by 21 hours, 31 minutes ago
-
Misbehaving devices
by 1 day, 23 hours ago
-
.NET 8.0 Desktop Runtime (v8.0.16) – Windows x86 Installer
by 4 days, 9 hours ago
-
Neowin poll : What do you plan to do on Windows 10 EOS
by 1 day, 8 hours ago
Remembering Woody
