Although most hackers tend to focus on the Windows environment to carry out each of their attacks, the truth is that macOS users are not completely safe.
However, there are different malware aimed directly at users of macOSwhich are as destructive as the ones we can see in the Windows environment, and the latest one that has been discovered has been acting freely in recent months.
Check Point Research security researchers they have issued an alert to warn 100 million users with a macOS that They have detected a new variant of the Banshee malwareand which is capable of stealing browser credentials, cryptocurrency wallets and the user’s personal data.
The malware began to act in the middle of last year, but now it has a new variant that has gone unnoticed in recent times.
The reason the malware was not detected until recently is that it has incorporated the same encryption method as Apple’s XProtect antivirus detection suite.
That is to say, the hackers “stole a string encryption algorithm from Apple’s own XProtect antivirus engine, which replaced the plain text strings used in the original version,” Check Point explained.
Furthermore, the latest variants have begun to spread in recent weeks, and are beginning to be distributed through phishing websites or fake GitHub repositories.
“This stealthy malware not only infiltrates, but operates undetected, seamlessly integrating with normal system processes while stealing browser credentials, cryptocurrency wallets, user passwords, and sensitive file data,” researchers from Check Point.
Once the user’s device is infected, it is capable of stealing sensitive credentials from browsers such as Chrome, and is even capable of using convincing fake pop-ups to look like legitimate macOS system messages and thus steal access credentials.
Get to know how we work in ComputerToday.
Tags: Malware
Add Comment