It’s essential to be aware that malware lurks in the shadows, even though you may be taking the necessary preventive steps to stay safe online. Recently, Jamf Threat Labs uncovered a new form of evasive crypto-jacking malware targeting macOS users, specifically through pirated versions of Apple’s Final Cut Pro video editing software.
An investigation by Jamf revealed that the malicious Final Cut Pro software was being distributed via The Pirate Bay, a repository for illegally downloaded content. Once users installed the corrupted software, malware would be set up to run in the background and the cryptocurrency miner, XMRig, would be used covertly to mine for currency.
Jamf’s researchers noted that the malware was able to bypass macOS Ventura due to the way it modified the application without changing the original code signing. However, once the corrupted app was launched, an error message would appear that it is damaged and can’t be opened, by this point though, the malware had already been put in place and running.
It’s important to highlight that the malware was not detected at the time of discovery on VirusTotal, a website used to detect malware. since then, a few unnamed vendors have appeared to have started detecting the malicious software, yet some malicious programs still run undetected. This means macOS users might not be able to rely on their antimalware software to detect potential infections.
The best way to avoid malware on macOS is to not download pirated software in the first place. While Final Cut Pro is rather expensive at $299.99, iMovie and DaVinci Resolve are both notable and popular free video editing software options.
macOS users should take extra care when downloading and using software, as there have been a number of recent threats targeting the platform. As new evasive cyber-attacks continue to emerge, we should be aware that numerous malicious programs are designed to go undetected, so it is our responsibility to stay vigilant and take extra precautions whenever downloading and using applications.