Discussion:
Apple users warned of hi-tech Mac malware
Add Reply
David
2025-02-17 00:05:00 UTC
Reply
Permalink
Apple users warned of hi-tech Mac malware that steals personal data,
goes undetected for months — here’s how to stay safe:-
https://nypost.com/2025/01/11/tech/apple-users-warned-of-hi-tech-mac-
malware-that-steals-personal-data-goes-undetected-for-months-heres-how-
to-stay-safe
//An estimated 100 million Apple users are at risk of falling victim to
malware.
Cybersecurity software company Check Point issued an urgent warning to
the millions of Mac users around the world who may be preyed on by
malicious actors evading the devices’ built-in antivirus systems.
According to the company, cybercriminals have developed malware, dubbed
the “Banshee macOS Stealer,” which secretly steals credentials and other
sensitive data while operating undetected for more than months.//
There's more ......
Shared with folk on ACW
--
David
FromTheRafters
2025-02-17 10:41:05 UTC
Reply
Permalink
Post by David
Apple users warned of hi-tech Mac malware that steals personal data, goes
undetected for months — here’s how to stay safe:-
https://nypost.com/2025/01/11/tech/apple-users-warned-of-hi-tech-mac-
malware-that-steals-personal-data-goes-undetected-for-months-heres-how-
to-stay-safe
//An estimated 100 million Apple users are at risk of falling victim to
malware.
Cybersecurity software company Check Point issued an urgent warning to
the millions of Mac users around the world who may be preyed on by
malicious actors evading the devices’ built-in antivirus systems.
According to the company, cybercriminals have developed malware, dubbed
the “Banshee macOS Stealer,” which secretly steals credentials and other
sensitive data while operating undetected for more than months.//
There's more ......
Shared with folk on ACW
I found no meat in that sandwich, I found this though:

https://www.intego.com/mac-security-blog/banshee-stealer-mac-malware-resurfaced-in-new-campaigns/
David
2025-02-17 14:15:33 UTC
Reply
Permalink
Post by FromTheRafters
Post by David
Apple users warned of hi-tech Mac malware that steals personal data,
goes undetected for months — here’s how to stay safe:-
https://nypost.com/2025/01/11/tech/apple-users-warned-of-hi-tech-mac-
malware-that-steals-personal-data-goes-undetected-for-months-heres-
how- to-stay-safe
//An estimated 100 million Apple users are at risk of falling victim
to malware.
Cybersecurity software company Check Point issued an urgent warning to
the millions of Mac users around the world who may be preyed on by
malicious actors evading the devices’ built-in antivirus systems.
According to the company, cybercriminals have developed malware, dubbed
the “Banshee macOS Stealer,” which secretly steals credentials and other
sensitive data while operating undetected for more than months.//
There's more ......
Shared with folk on ACW
https://www.intego.com/mac-security-blog/banshee-stealer-mac-malware-
resurfaced-in-new-campaigns/
Thank you.

Are you persuaded to pay for anti-malware software for your Macbook Pro?
--
David
FromTheRafters
2025-02-17 18:58:03 UTC
Reply
Permalink
Post by David
Post by FromTheRafters
Post by David
Apple users warned of hi-tech Mac malware that steals personal data, goes
undetected for months — here’s how to stay safe:-
https://nypost.com/2025/01/11/tech/apple-users-warned-of-hi-tech-mac-
malware-that-steals-personal-data-goes-undetected-for-months-heres- how-
to-stay-safe
//An estimated 100 million Apple users are at risk of falling victim to
malware.
Cybersecurity software company Check Point issued an urgent warning to
the millions of Mac users around the world who may be preyed on by
malicious actors evading the devices’ built-in antivirus systems.
According to the company, cybercriminals have developed malware, dubbed
the “Banshee macOS Stealer,” which secretly steals credentials and other
sensitive data while operating undetected for more than months.//
There's more ......
Shared with folk on ACW
https://www.intego.com/mac-security-blog/banshee-stealer-mac-malware-
resurfaced-in-new-campaigns/
Thank you.
Are you persuaded to pay for anti-malware software for your Macbook Pro?
Not yet.
David
2025-02-17 19:48:14 UTC
Reply
Permalink
Post by FromTheRafters
Post by David
Post by FromTheRafters
Post by David
Apple users warned of hi-tech Mac malware that steals personal
data, goes undetected for months — here’s how to stay safe:-
https://nypost.com/2025/01/11/tech/apple-users-warned-of-hi-tech-
mac- malware-that-steals-personal-data-goes-undetected-for-months-
heres- how- to-stay-safe
//An estimated 100 million Apple users are at risk of falling
victim to malware.
Cybersecurity software company Check Point issued an urgent warning to
the millions of Mac users around the world who may be preyed on by
malicious actors evading the devices’ built-in antivirus systems.
According to the company, cybercriminals have developed malware, dubbed
the “Banshee macOS Stealer,” which secretly steals credentials and other
sensitive data while operating undetected for more than months.//
There's more ......
Shared with folk on ACW
https://www.intego.com/mac-security-blog/banshee-stealer-mac-malware-
resurfaced-in-new-campaigns/
Thank you.
Are you persuaded to pay for anti-malware software for your Macbook Pro?
Not yet.
OK. Thanks.
Mike Easter
2025-02-18 00:32:07 UTC
Reply
Permalink
Post by David
Post by FromTheRafters
Post by David
Are you persuaded to pay for anti-malware software for your Macbook Pro?
Not yet.
OK. Thanks.
I predict FTR does a lot less 'stupid stuff' on his Mac than you do BDB.

Behavior has a lot to do w/ the risks of being on the internet.

The idea that you can act however you want to and just format the drive
and reinstall periodically is NOT good strategy.
--
Mike Easter
David
2025-02-18 08:17:45 UTC
Reply
Permalink
Post by Mike Easter
Post by David
Post by FromTheRafters
Post by David
Are you persuaded to pay for anti-malware software for your Macbook Pro?
Not yet.
OK. Thanks.
I predict FTR does a lot less 'stupid stuff' on his Mac than you do BDB.
I agree, 100%
Post by Mike Easter
Behavior has a lot to do w/ the risks of being on the internet.
Again, I agree.
Post by Mike Easter
The idea that you can act however you want to and just format the drive
and reinstall periodically is NOT good strategy.
Please explain WHY you think that, Mike.
--
ChatGPT says ....

You're absolutely right. Relying on periodic reinstalls as a way to deal
with bad security practices, poor system maintenance, or reckless
software installations is a terrible strategy. Some reasons why include:

1. **Data Loss Risks** – Even with backups, there’s always a chance of
losing something important.
2. **Malware Persistence** – Some malware can survive reinstalls by
hiding in firmware or infecting backups.
3. **Time-Consuming** – Reinstalling and setting everything up again
takes time that could be saved by proper maintenance.
4. **Hardware Wear** – Constantly writing large amounts of data during
reinstalls contributes to SSD wear.
5. **Bad Habits Stay** – If someone keeps making the same mistakes,
reinstalling won’t fix the root problem.

A better approach is to maintain good security habits, use backups
properly, and troubleshoot issues instead of nuking the system every
time something goes wrong.
Mike Easter
2025-02-17 20:34:52 UTC
Reply
Permalink
Post by FromTheRafters
https://www.intego.com/mac-security-blog/banshee-stealer-mac-
malware- resurfaced-in-new-campaigns/
How can I keep my Mac safe from stealer malware?
The site is actually a promotional one for an antimalware Intego. Not
only is it a 'counter-balance' to the idea of Macs not needing 3rd party
ware, but it also takes a smack at one of BDB's faves, namely VT, which
Post by FromTheRafters
Notably, Intego’s VirusBarrier engine is not one of the more than 60
engines on VirusTotal. Intego did not have an extended gap in
Banshee Stealer variant detection, unlike many other antivirus
companies seem to have had. In fact, Intego was already detecting
the supposedly “new” variants several months before the latest
reports hit the news cycle.
I was curious about which engines were detecting that malware; sortofa
when did what ware, including Mac's, start being able to detect the
family. I don't know how to use VT to see that; maybe somewhere else
there is a specific article whose purpose isn't just to promote Intego.
--
Mike Easter
Mike Easter
2025-02-17 22:21:23 UTC
Reply
Permalink
maybe somewhere else there is a specific article whose purpose isn't
just to promote Intego.
This site has more than anyone should want to know about this malware.
I don't really understand the idea of the ware's 'stealing' of Mac's
XProtect 'string'.

https://research.checkpoint.com/2025/banshee-macos-stealer-that-stole-code-from-macos-xprotect/
Banshee: The Stealer That “Stole Code” From MacOS XProtect
Bleeping Computer's explanation is easier to get:

https://www.bleepingcomputer.com/news/security/banshee-stealer-evades-detection-using-apple-xprotect-encryption-algo/
Banshee stealer evades detection using Apple XProtect encryption algo
--
Mike Easter
David
2025-02-17 22:31:02 UTC
Reply
Permalink
maybe somewhere else there is a specific article whose purpose isn't
just to promote Intego.
This site has more than anyone should want to know about this malware. I
don't really understand the idea of the ware's 'stealing' of Mac's
XProtect 'string'.
https://research.checkpoint.com/2025/banshee-macos-stealer-that-stole-
code-from-macos-xprotect/
Banshee: The Stealer That “Stole Code” From MacOS XProtect
https://www.bleepingcomputer.com/news/security/banshee-stealer-evades-
detection-using-apple-xprotect-encryption-algo/
Banshee stealer evades detection using Apple XProtect encryption algo
Frightening, eh?!!! ;-)

Well, it should be ....... for users of Mac computers!
--
David
Mike Easter
2025-02-17 23:03:59 UTC
Reply
Permalink
Frightening, eh?!!! 😉
Well, it should be ....... for users of Mac computers!
If you read about or pay attention to how it is 'distributed' and
installed, you might feel a little less frightened.

The whole idea is to foist malware on people who are trying to get
cracks of copyrighted s/w.

If you aren't that type, it seems that you wouldn't be likely to come
across and offer to give you something to install the malware, unbeknownst.
--
Mike Easter
Loading...