Apple Mac computers are generally considered more secure than Windows PCs, but they are not immune to hackers. Countless incidents have shown that Macs are not indestructible, and a new one has recently been added to the list. Security researchers have discovered a new variant of stealing malware that targets browser credentials, cryptocurrency wallets, and other personal data. I This malware was also reported in 2024. Previously, it relied on macOS browser extensions to steal data. Now, it's using phishing websites and fake GitHub repositories to target Macs with a user base of 100 million.
I'm giving away the latest and greatest AIRPODS PRO 2
Sign up for my account to get freebies Free newsletter.
A man is working on an Apple laptop (Kurt "CyberGuy" Knutson)
Cybersecurity company checkpoint A new variant of the information-stealing malware BanShee has been discovered. Elastic Security Labs first highlighted this malware in mid-2024, noting that it operates as malware-as-a-service, a business model in which cybercriminals provide access to malware and related infrastructure for a fee. At the time, it cost as much as $3,000 a month.
Check Point said the malware evolved after being exposed in September. This time, its developers "stole" a string encryption algorithm from Apple's own XProtect antivirus engine, which replaced the plain text strings used in the original version. Since antivirus programs expect to see this encryption from Apple's legitimate security tools, they won't be flagged as suspicious, allowing BanShee to remain undetected and quietly steal data from target devices.
A woman is using her Apple desktop and Apple laptop (Kurt "CyberGuy" Knutson)
4.3 million Americans face massive health savings account data breach
BanShee Stealer is a prime example of the development of advanced malware. Once inside the system, it can directly steal all kinds of sensitive information. It tracks data from browsers like Chrome, Brave, Edge, and Vivaldi, as well as cryptocurrency wallet extensions. it even exploits Two-factor authentication (2FA) Extension to get credentials. Most importantly, it collects detailed information about the device's software and hardware, as well as its external IP address.
Mac malware also deceives users by tricking victims into entering their macOS password by creating fake pop-ups that look like real system prompts. Once the stolen information is collected, BanShee infiltrates it into a command and control server and uses encrypted and encoded files to keep the data secure.
The malware's creators used a GitHub repository to spread BanShee. They set up fake repositories that appear to host popular software, complete with stars and reviews to appear trustworthy. These campaigns aren't just for BanShee's macOS users. They also hit Windows users in different ways Malware called Lumma Stealer. After three waves of attacks, the attackers used these fake repositories to trick people into downloading their malicious files.
A woman works on her laptop (Kurt "CyberGuy" Knutson)
Massive security flaw on Mac puts most popular browser at risk
Follow these basic tips to protect your Mac from the latest malware threats, including the infamous BanShee Stealer.
1) Have powerful antivirus software: The best way to protect yourself from malicious links that install malware and potentially access your private information is to install antivirus software on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the 2025 winners of the best antivirus protection for your Windows, Mac, Android, and iOS devices.
2) Please treat downloads and links with caution: Only download software from reputable sources, such as the Mac App Store or official websites of trusted developers. Be wary of unsolicited emails or messages prompting you to download or install updates, especially if they contain links. Phishing attempts often disguise themselves as legitimate update notifications or emergency messages.
3) Keep software updated: Make sure macOS and all installed applications are up to date. Apple frequently releases security patches and updates that address vulnerabilities. Enable automatic updates for macOS and your apps to stay protected without having to manually check for updates. If you need more help, please see my Guide to keeping all your devices updated.
4) Use strong and unique passwords: To protect your Mac from malware, it's also crucial to use strong and unique passwords for all your accounts and devices. Avoid reusing passwords between different sites or services. one Password manager This is where it can be very helpful; it generates and stores complex passwords for you, making them difficult for hackers to crack.
It also records all your passwords in one place and fills them in automatically when you log into your account, so you don't have to remember them yourself. By reducing the number of passwords you need to remember, you are less likely to reuse them, reducing the risk of a security breach. Get more details about me The Best Expert-Reviewed Password Managers of 2025 Are Here.
5) Use two-factor authentication (2FA): enable 2FA Your important accounts, including your Apple ID, email, and any financial services. This adds an extra step to the login process, making it harder for attackers to gain access, even if they have your password.
How to delete your private data from the internet
When human operators are involved, no device is immune to cyberattacks. Take the Banshee Stealer, for example. It successfully targeted Macs not because Apple's cybersecurity measures were weak, but because it successfully tricked users into installing it and granting the required permissions. Most breaches, hacks, and other cyber attacks stem from human error. This highlights the importance of maintaining basic cybersecurity hygiene. It's crucial to know what you're downloading, make sure it's from a trusted source, and double-check the permissions you give to any online service or app.
When downloading new software, how do you know if the installation is safe? Do you rely on app store ratings, reviews, or other content? Please write to us Cyberguy.com/contact.
For more of my tech tips and security alerts, subscribe to my free CyberGuy Reports newsletter: Cyberguy.com/Newsletter.
Ask Kurt a question or let us know what stories you'd like us to cover.
Follow Kurt on his social channels:
Answers to CyberGuy’s most frequently asked questions:
New news from Kurt:
Copyright 2024 CyberGuy.com. all rights reserved.