.jpeg)
MacBook users targeted by hackers; Malware named "Banshee Stealer" is stealing personal data
Banshee Stealer Malware: It used a string encryption method, inspired by Apple's XProtect antivirus engine. This allowed Banshee to operate undetected for more than two months, posing a serious threat to macOS users.
Security researchers at Check Point Research (CPR) have detected high-tech malware targeting macOS users. The malware is named "Banshee Stealer", which is designed to steal users' sensitive information, such as browser credentials, cryptocurrency wallets, and system passwords. This malware is so clever that it is almost impossible to catch it.
First coming into the limelight in the first half of 2024, when it was sold on underground forums as "Stealer-as-a-Service" for $3,000, a new version of Banshee Stealer was revealed in September 2024 using advanced techniques to evade antivirus systems.
The new ransomware used a string encryption method, inspired by the way Apple's XProtect antivirus engine works. Such an approach enabled Banshee to go undetected for over two months, and it was able to pose a serious threat to macOS users.
This malware was spread through phishing sites and fake GitHub repositories. Most of the time, it came disguised as some very popular software such as Google Chrome, Telegram, and TradingView. Once installed, Banshee infects system processes, making it nearly impossible to find and remove.
