Hack On macOS Allows Attackers To Take Screenshots

Hackers have exploited a weakness in updated versions of macOS that allowed them to take screenshots on infected Macs without obtaining victims’ permission.

The zero-day was exploited by XCSSET, a malware discovered last August by TrendMicro, a security firm.

XCSSET used two zero-days to infect Mac developers with malware that stole browser files and cookies.

The malware also injected backdoors into websites, stole data from Skype and other apps, took screenshots, and encrypted files.

The infections came in the form of a malicious project that the hacker wrote for Xcode.

Xcode is a tool that Apple makes available to developers who write apps for macOS or other Apple operating systems.

Once an XCSSET project was opened and built, the malicious code ran on the user’s Mac, according to TrendMicro.

It is unlikely that XCSSET will infect Macs unless it has carried out a malicious Xcode project.

The majority of users should not worry unless they are developers who have used one of the projects.

For more information, read the original story in arstechnica.

Hack On macOS Allows Attackers To Take Screenshots

Top Stories

Meta cuts jobs as it doubles down on AI

CISA exposed internal passwords and cloud keys in public repository

Jury throws out Elon Musk’s lawsuit against OpenAI and Sam Altman

U.S. carriers team up to counter Starlink’s satellite-to-phone push

ChatGPT now lets Pro users connect bank and investment accounts

Meta employees protest tracking software as layoffs loom

Related Articles

CISA exposed internal passwords and cloud keys in public repository

Canvas restores service after cyberattack disrupted schools and universities

Security researcher finds extensive tracking and security concerns inside White House mobile app

Microsoft Defender flags DigiCert root certificates as malware in false positive

TND News Desk

TND News Desk

Jim Love