XLoader Reborn: A Dangerous New Threat to macOS Users


Published on Aug 22, 2023   —   3 min read

Members Only

Cybercriminals are constantly evolving their techniques to target macOS users. The latest threat is XLoader, a malware-as-a-service (MaaS) that has been reborn with new capabilities.

The new XLoader is written natively in C and Objective-C, and is signed with an Apple developer signature. This gives it a broader reach, as it can now be installed on any macOS device without any user interaction. The malware also masquerades as an office productivity app named "OfficeNote", making it more likely to be downloaded and run by unsuspecting users.

The new XLoader is also more sophisticated than its predecessors. It can steal a wider range of sensitive information, including browser cookies, passwords, credit card numbers, and bank account information. It can also evade detection by antivirus software and other security tools.

Users should be aware of the risks posed by the new XLoader and take steps to protect themselves. These steps include using a reputable antivirus solution, keeping their software up to date, and being wary of emails and attachments from unknown senders.

This post is for subscribers only

Subscribe now and have access to all our stories, enjoy exclusive content and stay up to date with constant updates.


Already have an account? Sign in

Share on Facebook Share on Linkedin Share on Twitter Send by email

Subscribe to the newsletter

Subscribe to the newsletter for the latest news and work updates straight to your inbox, every week.