Beware MacSpy: Malware Targeted at Mac OS -- Security Today

Beware MacSpy Malware Targeted at Mac OS

MacSpy is being advertised as the “most sophisticated Mac spyware ever.”

Jun 14, 2017

The cybercriminals are at it again with the “most sophisticated Mac spyware ever” with the intent to show users that no one is safe.

Dubbed MacSpy, the malware is one of the first seen malware-as-a-service (MaaS) designed for the OSX platform, according to a June 9 blog post from AlienVault researchers.

The malware, which is free to anyone, has a list of features that claim to offer no digital trace of the threat actor, screen capture, key logging, iCloud syncing and is completely investible to the victims. The cybercriminal can also do continuous voice recording, pasteboard and retrieve browser data without ever being detected.

The cybercriminals who decide to use MacSpy have the option to upgrade to premium features which include the ability to adjust capture and record intervals remotely, retrieve any file or data as well as encrypt the entire directory within a few seconds.

The MaaS is obtained by emailing the author of the malware. The author then sends a copy of MacSpy to be downloaded via Tor. From there, the cybercriminal needs to manually upload the malware onto the target’s Mac.

“Currently it relies more on the attacker having physical access to the system, or tricking the user into running the executable,” the blog post read. “Users can take the usual advice of don't execute programs delivered to them over email unrequested, lock your computer when not using it.”

ISC East 2024 To Present Dynamic Lineup of Special Events, New Show Floor Updates
11/01/2024
Security Industry Association Releases Version 2.2.2 of SIA Open Supervised Device Protocol Standard
11/01/2024
Convergint, Deloitte Forge Alliance to Address Rising Demand for Integrated Cyber-Physical Security Solutions
10/30/2024
Charisse Jacques Appointed New President of SAFR
10/30/2024
TSA Announces Final Mobile Driver's License Acceptance at Airport Security, Federal Buildings
10/30/2024
Paxton Launches New Video Intercom (Entry) App
10/23/2024
Paxton Tech Tour Receives 4.9 Stars Top Rating From Installers
10/22/2024
Centrios to Make Canada Debut
10/22/2024

Featured

Survey: 54% of Organizations Cite Technical Debt as Top Hurdle to Identity System Modernization

Modernizing identity systems is proving difficult for organizations due to two key challenges: decades of accumulated Identity and Access Management (IAM) technical debt and the complexity of managing access across multiple identity providers (IDPs). These findings come from the new Strata Identity-commissioned report, State of Multi-Cloud Identity: Insights and Trends for 2025. The report, based on survey data from the Cloud Security Alliance (CSA), highlights trends and challenges in securing cloud environments. The CSA is the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment. Read Now
- Identity Management Biometrics
Study: Nearly Half of Companies Exclude Cybersecurity Teams When Developing, Onboarding and Implementing AI Solutions

Only 35 percent of cybersecurity professionals or teams are involved in the development of policy governing the use of AI technology in their enterprise, and nearly half (45 percent) report no involvement in the development, onboarding, or implementation of AI solutions, according to the recently released 2024 State of Cybersecurity survey report from ISACA, a global professional association advancing trust in technology. Read Now
- Cybersecurity
New Report Series Highlights E-Commerce Threats, Fraud Against Retailers

Trustwave, a cybersecurity and managed security services provider, recently released a series of reports detailing the threats facing the retail sector, marking the second year of its ongoing research into these critical security issues. Read Now
- Cybersecurity
Stay Secure in 2024: Updated Cybersecurity Tips for the Office and at Home

Cyber criminals get more inventive every year. Cybersecurity threats continue to evolve and are a moving target for business owners in 2024. Companies large and small need to employ cybersecurity best practices throughout their organization. That includes security integrators, manufacturers, and end users. Read Now
- Cybersecurity

Webinars

Hanwha Vision (formerly Hanwha Techwin)

Getting Control of your Access
Hanwha Vision (formerly Hanwha Techwin), Eagle Eye Networks Inc, Salient Systems, Safety Technology International Inc., AtlasIED, Omnilert, Paxton Access Inc.

Campus Security Today 2024 Virtual Summit
Push-to-Talk over Cellular – The NEXT Revolution

Whitepapers

911Cellular

A Buyer's Guide to Panic Button Systems
Allegion

The Current State of School Security
Hytera US Inc.

Push-to-Talk Over Cellular

New Products

4K Video Decoder

3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3
EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles. 3
Connect ONE®

Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3