New Banshee Stealer variant continues attacks on macOS devices
A new version of the Banshee macOS stealer was observed — the malware steals browser credentials, cryptocurrency wallets, and other sensitive data.
Check Point Research said in a Jan. 9 blog post that it was monitoring the Banshee infostealer since last September. The researchers said in being undetected for two months, the latest version of Banshee introduced string encryption taken from Apple’s XProtect, likely causing antivirus systems to overlook the macOS malware.
“As macOS continues to gain popularity, with over 100 million users globally, it’s becoming an increasingly attractive target for cyber criminals,” wrote the Check Point researchers. “This stealthy malware doesn’t just infiltrate: it operates undetected, blending seamlessly with normal system processes. What makes Banshee truly alarming is its ability to evade detection. Even seasoned IT professionals struggle to identify its presence.”
Lawrence Pingree, vice president at Dispersive, said one big takeaway from this news is that no operating system is immune to malware: period.
/cloudfront-us-east-2.images.arcpublishing.com/reuters/DFJYDZQLEJJF3F66K4NZMK4CCQ.jpg)
