Microsoft has identified a new variant of “XCSSET malware” that can steal funds from crypto wallets as well as essential data stored on Apple MacOS systems. The malware XCSSET malware emerged publicly during 2020 and has earned its notorious reputation of stealing Telegram data and activating screen recording while gaining access to Apple Notes.
According to Microsoft, the updated version contains worrying capabilities because it enables attackers to modify Bitcoin addresses displayed in browsers leading to potential fund loss.
“Its first known variant since 2022, this latest XCSSET malware features enhanced obfuscation methods, updated persistence mechanisms, and new infection strategies. These enhanced features add to this malware family’s previously known capabilities, like targeting digital wallets, collecting data from the Notes app, and exfiltrating system information and files,” said Microsoft in a statement released on Wednesday.
Microsoft reports that the present XCSSET version remains confined but warns users to stay attentive regarding such threats. Microsoft Defender for Endpoint on Mac possesses the capabilities to identify the malware yet users must exercise extreme caution toward unapproved downloads of Xcode projects and apps. Users need to ensure software authenticity before they install new applications since the proper security stands in the Mac App Store.
Users need to learn about new threats because ransomware techniques keep developing and they need to take action to protect their files and digital property.
Also Read: How to detect crypto malware in your computer systems?
