Security researcher from Check Point Research Observed a new strain of Malware In the wild evolved to steal data from Mac OS user.
The new strain, called “XLoader,” comes from the infamous Formbook malware that has been active for over five years. The Formbook was originally created as simple Keylogger, Cybercriminals have realized that there is a universal tool for that possibility. This caused the author to stop selling the product and then restart it as XLoader.
Formbook was previously used primarily to target Windows users, but after renaming it as XLoader last year, it gained additional features such as the ability to target. Mac..
What makes XLoader particularly dangerous is the fact that you can buy malware licenses at. Dark web For only $ 49. Cybercriminals who have purchased an XLoader license can collect login credentials, collect screenshots, record keystrokes, and execute malicious files on the victim’s machine.
Check Point Research tracked XLoader activity from December last year to June this year and found that more than half (53%) of malware-infected victims live in the United States. Hong Kong was the second hardest hit at just 9%, followed by Mexico and Germany at 5% and 3%, respectively.
Because XLoader spreads using spam emails that contain malicious files, Check Point Research allows users to open suspicious email attachments, visit suspicious websites, and so on. Malware removal software To prevent your Mac or PC from getting infected.
However, if the system appears to be infected, XLoader is stealth in nature and difficult to detect, so cybersecurity companies say that regular users should consult a security expert.
Experienced users will run autorun on the Mac, check the username on the OS, go to the / Users /[username/Library/LaunchAgentsdirectorylookforsuspiciousfilenamesandseeiftheyareinfectedYoucancheckitDeletingsuspiciousfilesalsoremovesXLoaderfromthesystembutthismethodisnotforinexperiencedpeople[username/Library/LaunchAgentsdirectoryandlookforsuspiciousfilenamestoseeiftheyareinfectedRemovinganysuspiciousfilesshouldthenalsoremoveXLoaderfromyoursystemthoughthismethodisn’tfortheinexperienced[username/Library/LaunchAgentsディレクトリに移動して、疑わしいファイル名を探し、感染していないかどうかを確認できます。疑わしいファイルを削除すると、システムからXLoaderも削除されますが、この方法は経験の浅い人向けではありません。[username/Library/LaunchAgentsdirectoryandlookforsuspiciousfilenamestoseeiftheyareinfectedRemovinganysuspiciousfilesshouldthenalsoremoveXLoaderfromyoursystemthoughthismethodisn’tfortheinexperienced
Yaniv Balmas, Head of CyberInvestigation at Check Point Software, explained why cybercriminals are on the rise. Target Mac users,say it:
“There may be a gap between Windows malware and MacOS malware, but the gap is gradually closing over time. The truth is that MacOS malware is bigger and more dangerous. Our recent findings are a perfect example and support this growth trend. As the MacOS platform grows in popularity, it makes sense for cyber criminals to take an interest in this domain. Personally. Anticipates that the Formbook malware family will be followed by cyber threats. Think twice before opening email attachments received from unknown senders. “