Uptycs Blog

Welcome! The Uptycs blog is for security professionals and osquery enthusiasts interested in exploring new ideas in cloud security. We hope you’ll enjoy our blog enough to subscribe and share.

Ashwin Vamshi

Ashwin Vamshi

Ashwin Vamshi is a security researcher with an innate interest in APTs, targeted attacks and malware with high media attention. He has more than a decade of experience in areas related to antivirus, firewall, IDS/IPS, web categorization, sandbox, heuristic engines, threat intelligence, and cloud security. His research on cyber attacks and threats has been quoted in several infosec magazines and online media portals.

macOS: Bashed Apples of Shlayer and Bundlore

macOS: Bashed Apples of Shlayer and Bundlore

The Uptycs threat research team has been observing over 90% of macOS malware in our daily analysis and customer telemetry alerts using shell scripts. Though these scripts have slight variations, they mostly belong to a plague of adware strains—Shlayer and Bundlore. These malware are the most predominant malware in macOS, also with a history of evading and bypassing the built-in Xprotect, Gatekeeper, Notarization and File Quarantine security features of macOS.