Summary: A new variant of the XCSSET malware is targeting macOS users through refined techniques, including enhanced obfuscation and updated infection methods. Originally discovered in 2020, XCSSET is designed to steal sensitive information from various applications and systems. Microsoft warns that the malware’s capabilities have evolved, increasing the potential risks for users.
Affected: macOS users and developers using Apple Xcode
Keypoints :
- New variant employs advanced obfuscation techniques and an updated persistence mechanism.
- Malware can now dynamically generate payloads and execute them in new shell sessions.
- Targets include digital wallets, Notes app data, and other sensitive system information.
- New methods of placing malicious payloads in Xcode projects have been identified.
Source: https://www.securityweek.com/microsoft-warns-of-improvements-to-xcsset-macos-malware/