Beware MacSpy: Malware Targeted at Mac OS -- Security Today

Beware MacSpy Malware Targeted at Mac OS

MacSpy is being advertised as the “most sophisticated Mac spyware ever.”

Jun 14, 2017

The cybercriminals are at it again with the “most sophisticated Mac spyware ever” with the intent to show users that no one is safe.

Dubbed MacSpy, the malware is one of the first seen malware-as-a-service (MaaS) designed for the OSX platform, according to a June 9 blog post from AlienVault researchers.

The malware, which is free to anyone, has a list of features that claim to offer no digital trace of the threat actor, screen capture, key logging, iCloud syncing and is completely investible to the victims. The cybercriminal can also do continuous voice recording, pasteboard and retrieve browser data without ever being detected.

The cybercriminals who decide to use MacSpy have the option to upgrade to premium features which include the ability to adjust capture and record intervals remotely, retrieve any file or data as well as encrypt the entire directory within a few seconds.

The MaaS is obtained by emailing the author of the malware. The author then sends a copy of MacSpy to be downloaded via Tor. From there, the cybercriminal needs to manually upload the malware onto the target’s Mac.

“Currently it relies more on the attacker having physical access to the system, or tricking the user into running the executable,” the blog post read. “Users can take the usual advice of don't execute programs delivered to them over email unrequested, lock your computer when not using it.”

Featured

Survey: Nearly Half of Employees Hide Workplace AI Use

Laserfiche, a SaaS provider of intelligent content management and business process automation, recently released new survey findings on AI adoption in the workplace, revealing that nearly half of Americans (49%) who use AI at work keep it to themselves, with 15% deliberately avoiding telling their manager. Read Now
- Artificial Intelligence
- Cybersecurity
46% of Enterprise Passwords Are Vulnerable to Cracking

Picus Security recently released The Blue Report™ 2025, based on more than 160 million real-world attack simulations. Now in its third year, the report provides a data-driven assessment of how well security controls perform against today’s threats — and this year’s findings are the most concerning to date. Read Now
- Cybersecurity
Community-Led Video Security Network Transforms Pennsylvania City Public Safety

A community-supported video security initiative has transformed public safety in Lancaster, Pennsylvania. The citizen-led collaboration demonstrates how open platform video technology can help revitalize struggling urban areas. Read Now
- Government
Browser-Based AI Agents: The Silent Security Threat Unfolding

Some of the most revolutionary advances in artificial intelligence include browser-based AI agents, which are self-sustaining software tools integrated into web browsers that act on behalf of individuals. Read Now
- Cybersecurity
Report: Cybercriminals Abandon Tech Tricks for Personalized Email Deception Tactics

VIPRE Security Group, a cybersecurity, privacy, and data protection company, has released its email threat landscape report for Q2 2025. Through an examination of worldwide real-world data, this report sounds the alarm on the most significant email security trends observed in the second quarter of 2025, enabling organizations to develop effective email security defenses for the remainder of the year. Read Now
- Cybersecurity

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

PureTech Systems, Clear Align Partner to Deliver Advanced Autonomous Security, Command-and-Control for U.S. Air Force Tactical Security System

Webinars

Whitepapers

New Products

Unified VMS

AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities
ResponderLink

Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols.
Compact IP Video Intercom

Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis.