New Xcode Malware Targets Apple Mac Developers, Experts Warn

New malware is currently targeting Apple Mac developers. Security researchers explained that this new computer virus uses the coding platform's scripting features to install malicious backdoor codes onto the affected Apple devices.

New Malware Copies Legitimate Xcode Project and Targets Apple Mac Developers; How to Avoid It
Participant hold their laptops in front of an illuminated wall at the annual Chaos Computer Club (CCC) computer hackers' congress, called 29C3, on December 28, 2012 in Hamburg, Germany. The 29th Chaos Communication Congress (29C3) attracts hundreds of participants worldwide annually to engage in workshops and lectures discussing the role of technology in society and its future. Photo by Patrick Lux/Getty Images

According to Apple Insider's latest report, the new malware called XcodeSpy is attacking Xcode developers. It affects the Xcode integrated development environment or IDE on macOS. This is currently a serious issue since Xcode files are important to Apple developers.

They are currently using these files to develop Apple Store applications for MacBooks, iPhones, and other gadgets. Sentinel Labs' researchers were the first experts to discover the new malware on Mar. 18.

To give you more idea, here are other things that the security experts found.

How dangerous is the new Xcode malware?

Researchers at Sentinel Labs explained that the new computer virus exploits the Run Script feature in the IDE to infect Apple developers' gadgets using their shared Xcode projects.

Here are other things they discovered:

Apple Reportedly NOT Planning to Release New Large-Screen iMac After Discontinuing 27-Inch Option
The new iMac Pro is displayed during the 2017 Apple Worldwide Developer Conference (WWDC) at the San Jose Convention Center on June 5, 2017 in San Jose, California. Apple CEO Tim Cook kicked off the five-day WWDC with announcements of a a new operating system, a new iPad Pro and a the HomePod, a music speaker and home assistant. WWDC runs through June 9. Photo by Justin Sullivan/Getty Images
  • XcodeSpy is a malicious Xcode project that installs a custom variant of the EggShell backdoor on the developer's macOS computer along with a persistence mechanism.
  • The XcodeSpy infection vector could be used by other threat actors, and all Apple Developers using Xcode are advised to exercise caution when adopting shared Xcode projects.
  • The backdoor has functionality for recording the victim's microphone, camera, and keyboard and the ability to upload and download files.

How to avoid the new Apple malware

The security experts said that Apple developers should now be extra careful when opening third-party Xcode projects. They added that since this is a new computer virus, the future victims would more likely be the new or inexperienced developers.

They suggested that developers should practice caution. This means that they should check for malicious Run Scripts when using third-party Xcode projects. Aside from these, the Apple Mac developers should also inspect individual projects for malicious Run Scripts in the Build Phases tab. If you want to know further details, all you need to do is click here.

For more news updates about Apple and its new security issues, always keep your tabs open here at TechTimes.

This article is owned by TechTimes.

Written by: Giuliano de Leon.

ⓒ 2024 TECHTIMES.com All rights reserved. Do not reproduce without permission.
Join the Discussion
Real Time Analytics