Welcome to the Tech Meme Right Home for Friday, November 12th, 2021. I'm Brian McCullough today.

Beware, a watering hole zero day attack that affected Mac OS. Spotify is getting into the

audiobook game. Movie Pass looks like it might be coming back from the dead and of

course the weekend long read suggestions.

Here's what you missed today in the world of tech.

Heads up everybody. Head up everybody. Google researchers found a watering hole attack back in August that

was exploiting a Mac OS Zero Day and it seemed to be targeting Hong Kong pro-democracy sites.

Apple patched this on September 23rd, but still, quote,

on Thursday, Google's threat analysis group, known as Tag, the company's elite team of hacker hunters, published a report

detailing the hacking campaign. The researchers didn't go as far as pointing the finger at

a specific hacking group or country but they said it was

quote a well-resourced group likely state-backed end quote. We do not have enough

technical evidence to provide attribution and we do not speculate about attribution the head of tag

Shane Huntley told motherboard in an email however the nature of the activity and

targeting is consistent with a government-backed actor end quote

Erie Hernandez the Google researcher who found the hacking campaign and authored the report,

wrote that TAG discovered the campaign in late August of this year.

The hackers had set up a watering hole attack, meaning they hid malware within the legitimate websites of

quote a media outlet and a prominent pro-democracy labor and political group in Hong Kong.

Users who visited those websites would get hacked with an unknown vulnerability,

in other words a zero day, and another exploit that took advantage of a previously patched

vulnerability for Mac OS that was used to install a back door on their computers according to Hernandez.

...