Summary: Microsoft warns of a new variant of the macOS malware XCSSET that targets Apple developers with enhanced obfuscation, persistence methods, and infection strategies. This upgraded version enables attackers to read Safari data, inject backdoors into websites, and exfiltrate sensitive information, raising concerns for broader supply chain attacks. Mac users are advised to remain vigilant when downloading Xcode projects and ensure they are from trusted sources.
Affected: Apple developers and macOS users
Keypoints :
- New XCSSET variant features improved obfuscation and persistence mechanisms, making it harder to detect and remove.
- The malware can exfiltrate data from various applications, take screenshots, and encrypt files.
- Microsoft recommends users inspect Xcode projects before downloading and only install apps from trusted sources for protection.
Source: https://www.darkreading.com/vulnerabilities-threats/microsoft-variant-macos-threat-xcsset