An estimated 100 million Apple users are at risk of falling victim to malware.
Cybersecurity software company Check Point issued an urgent warning to the millions of Mac users around the world who may be preyed on by malicious actors evading the devices’ built-in antivirus systems.
According to the company, cybercriminals have developed malware, dubbed the “Banshee macOS Stealer,” which secretly steals credentials and other sensitive data while operating undetected for more than months.
The malware first emerged last year in what Check Point calls “underground forums” and was called a “stealer-as-a-service” that was available to purchase for just $3,000. With it, cybercriminals could target Mac users with malware through phishing sites masquerading as popular software companies like Chrome and Telegram, the company reported.
In the fall, it was discovered that the “Banshee macOS Stealer” was modified by developers using “stolen” code from Apple’s XProtect, an antivirus system built into Mac devices, which allowed the malware to go undetected on user’s computers.
“This stealthy malware doesn’t just infiltrate; it operates undetected, blending seamlessly with normal system processes while stealing browser credentials, cryptocurrency wallets, user passwords, and sensitive file data,” Check Point researchers wrote.
“What makes Banshee truly alarming is its ability to evade detection. Even seasoned IT professionals struggle to identify its presence.”
After the malware’s source code was leaked in online forums in November, antivirus systems were better able to detect it, but it also sparked fear about emerging cybercrime tactics.
“While macOS does include robust security features like Gatekeeper, XProtect, and sandboxing, the rise of the Banshee stealer serves as a reminder that no operating system is immune to threats,” the researchers wrote.
In order to protect yourself and your data, tech news site Tom’s Guide advised users to “be vigilant” after apps and software that can be downloaded by verifying the company’s legitimacy before downloading.
While Macs do come with built-in antivirus software, experts at Tom’s Guide recommended “using that in tandem” with other antivirus software, which can be purchased, as well as a VPN and password manager.