Deconstructing APT28's XAgent for OSX

Tiberius Axinte - Deconstructing APT28's XAgent for OSX Until now APT28 was only available for Windows, Linux and iOS operating systems. Now we've discovered macOS version that which brings more spying capabilities such as key-logging, screen grabbing and file exfiltration and stealing iOS backups from Mac computers, which contain messages, contacts, voicemail, call history, notes, calendar and Safari data. The macOS version, is the most advanced version of APT28 in terms of cyber espionage capabilities.