XLoader Malware Can Now Infect Macs
Reading Time: 2 minutes

According to Bleeping Computers, XLoader Malware can now infect Macs. A common Windows malware known for stealing information from Windows systems can now also target macOS systems.

Xloader is a form of cross-platform malware advertised as a botnet with no dependencies to recover passwords from web browsers and some email clients (Chrome, Firefox, Opera, Edge, IE, Outlook, Thunderbird, Foxmail).

Bad actors can purchase the macOS malware for $49 (one month), this gives them access to a server that the seller provides. Researchers at CheckPoint studied Xloader for six months and discovered it is used across the world with requests from 69 countries. The United States alone has more than half victims of Xloader malware.

The Windows version of the malware is available for around $59 for a one-month license and $129 for three months. The bad actors can control how the users use the malware by keeping a centralized command and control infrastructure.

Formbook has been a major contributor of malware, being part of over 1000 malware campaigns in the last 3 years. With its cross-platform capabilities and a greater level of sophistication, Xloader is expected to have a wider reach.

According to Yaniv Balmas, Head of Cyber Research at Check Point, macOS’s growing popularity has exposed it to increasing attention from cybercriminals, who see the platform as a worthwhile target.

He said, “While there might be a gap between Windows and macOS malware, the gap is slowly closing over time. The truth is that macOS malware is becoming bigger and more dangerous.”

CheckPoint further said, “XLoader is stealthy enough for it to remain hidden to most users. It is possible to check for its presence by using macOS’ Autorun to check the username in the OS and look into the LaunchAgents folder, where entries with suspicious filenames should be deleted.”

Related Articles:

Joker Malware Discovered in Google Play Store
MosaicLoader – New Malware Hides Between Windows Defender Exclusions to Evade Detection
Only Fans Slut Account Hacked – Hacker Calls Subscribers Niggers and Uploads ISIS Beheading Videos