In the past there was a belief that Mac computers were immune to malicious software, however this idea has changed over time. The facts have shown that the computers of the block can also be infected and, precisely, the Windows XLoader malware migration to macOS is proof of it.
The new security threat has been discovered by Check Point Software company. This variant of XLoader, which now targets macOS systems, has a wide scope for executing harmful actions. These range from screenshots and keystroke log up to the execution of other malicious files.
As if this were not enough, the malware combines its abilities to steal login credentials session of browsers and email clients. At the moment, the services affected by this threat on macOS are Firefox, Chrome, Edge, Opera, Outlook, IE, Foxmail and Thunderbird, however, the list could grow in the future.
Malware for sale in the Dark web
A worrying piece of information about this finding is that the malware sold in the Dark web for $ 49 a month. According to a follow-up of Check Point, the cybercriminals behind this have already received requests from 69 countries, this means that its use is spreading in much of the world.
The truth is that Xloader is a malware good enough to remain hidden from most users. That is, someone could be infected, but without realizing it. The malicious program is listed as a cross-platform botnet with no dependencies.
Although it is a “silent” malware, detecting it on the system can be a simple task. One way to do this is to remove suspicious programs that start on macOS. To do this, the steps indicated below must be followed.
- Select the menu Manzana.
- Login to System preferences.
- Click on Users and groups.
- Select a user account.
- Walk into Start items.
- Eliminate suspicious items that could include malware.
Mac computers are no longer as secure as they used to be. While there is less targeted malware than there is on Windows, Check Point’s head of cyber research, Yaniv Balmas, who the growing popularity of macOS has made cybercriminals view the platform as a valuable target.