Cybercriminals are constantly evolving their techniques to target macOS users. The latest threat is XLoader, a malware-as-a-service (MaaS) that has been reborn with new capabilities.
The new XLoader is written natively in C and Objective-C, and is signed with an Apple developer signature. This gives it a broader reach, as it can now be installed on any macOS device without any user interaction. The malware also masquerades as an office productivity app named "OfficeNote", making it more likely to be downloaded and run by unsuspecting users.
The new XLoader is also more sophisticated than its predecessors. It can steal a wider range of sensitive information, including browser cookies, passwords, credit card numbers, and bank account information. It can also evade detection by antivirus software and other security tools.
Users should be aware of the risks posed by the new XLoader and take steps to protect themselves. These steps include using a reputable antivirus solution, keeping their software up to date, and being wary of emails and attachments from unknown senders.