Microsoft detected new malware found on macOS; know what to do to protect yourself

Microsoft has detected a new malware on macOS, which is spreading through Xcode projects. The unique aspect is that this is a novel version of the existing malware called XCSSET that was spotted back in 2022. The novel version is a master of the art of obfuscation, making it tougher to discover compared to the earlier version. It comes with novel persistence techniques and novel infection techniques that enhance its threat potential compared to the earlier version.

According to the Microsoft Threat Intelligence team, this malware spreads by hiding infected files in Xcode projects. Xcode is a software development tool from Apple, used for app development. When a developer downloads or clones an infected Xcode project, this malware enters the system.

According to Microsoft's report, many advanced features have been added to this new XCSSET variant. This variant uses more randomized encoding for payload generation, making it difficult to detect. The malware ensures that whenever the Mac's Launchpad starts, a malicious payload is also activated with it. This malware can hide its payload in new ways in targeted Xcode projects.

Microsoft has given some important advice to avoid this malware:

• Check any Xcode project thoroughly before downloading or cloning it.
• Download and install software only from trusted sources and official app stores.
• Microsoft Defender for Endpoint on Mac can detect XCSSET malware, including this new variant, so keep it active.