Hundreds of macOS malware samples are detected every week
Check Point Research (CPR), the threat intelligence division of Check Point , a leading global provider of cyber security solutions, warns companies and users not to underestimate the security risks on macOS computers. Every week, the research team discovers hundreds of malicious code samples specifically for macOS.
The main threat to macOS computers is adware, which is malicious code that tries to display unwanted advertisements. Detecting and uninstalling adware is often difficult. Adware tries to infiltrate devices unnoticed and hides itself from the antivirus software used. This type of malware can also collect valuable data such as operating system information, the location of the device, etc.and then send it to a C&C server.
The most widely used malware for macOS devices in companies is Pirrit Adware, which has been a Windows adware variant since 2014. Pirrit was first discovered on macOS devices in 2016. It focuses mainly on displaying unwanted advertising content, but could also take control of an infected device or steal sensitive information due to its origin.
Although the threat numbers are not as dramatic as Windows, security needs to be emphasized regardless of device and operating system. Any successful attack can have serious consequences, especially in a corporate environment. In addition, even seemingly weaker threats can be used to infect a system with destructive malware. In the long term, we see an increase in threats and attacks on devices with Apple operating systems, as well as an increase in attacks on mobile devices, where the risks are also underestimated.
An advanced security solution that focuses on prevention should be a fundamental and integral part of any device, regardless of the system. Not only are users at risk from traditional viruses and malware, phishing and other social engineering threats are also becoming more common. The coronavirus epidemic has also shown how flexibly hackers can respond to current events and, for example, create various fraudulent websites that reflect what users are currently looking for, be it coronavirus maps, support and incentive packages or information about tests and vaccines.