Malware Caught Using a macOS Zero-Day To Secretly Take Screenshots (techcrunch.com) 9
TechCrunch reports: Jamf says it found evidence that the XCSSET malware was exploiting a vulnerability that allowed it access to parts of macOS that require permission -- such as accessing the microphone, webcam, or recording the screen -- without ever getting consent. XCSSET was first discovered by Trend Micro in 2020 targeting Apple developers, specifically their Xcode projects that they use to code and build apps. By infecting those app development projects, developers unwittingly distribute the malware to their users, in what Trend Micro researchers described as a "supply-chain-like attack."
The malware is under continued development, with more recent variants of the malware also targeting Macs running the newer M1 chip. Once the malware is running on a victimâ(TM)s computer, it uses two zero-days -- one to steal cookies from the Safari browser to get access to a victimâ(TM)s online accounts, and another to quietly install a development version of Safari, allowing the attackers to modify and snoop on virtually any website. But Jamf says the malware was exploiting a previously undiscovered third-zero day in order to secretly take screenshots of the victim's screen.
The malware is under continued development, with more recent variants of the malware also targeting Macs running the newer M1 chip. Once the malware is running on a victimâ(TM)s computer, it uses two zero-days -- one to steal cookies from the Safari browser to get access to a victimâ(TM)s online accounts, and another to quietly install a development version of Safari, allowing the attackers to modify and snoop on virtually any website. But Jamf says the malware was exploiting a previously undiscovered third-zero day in order to secretly take screenshots of the victim's screen.
fake story - apple doesn't malware (Score:2, Funny)
only windows, android, linux gets malware
Re: fake story - apple doesn't malware (Score:1)
zero days (Score:2)
who needs bitcoin? zero-days seem to be the market with explosive growth recently...
How handy this popped up just as the court case.. (Score:1)
..needed some backing up that macOS has an app malware issue.
Looks like we need some alternatives to xcode and it's libraries, and Safari.
Omg calling all apple defendors (Score:1)
malware meme (Score:2)
"i don't always use zero-days"
"but when i do it's 3 of them at once!"
No os is perfect (Score:1)
Re: (Score:2)
--The important thing is, what virus scanner(s) will detect and fix this issue