MacOS devices are being targeted by pirated apps that want to hijack your machine

Sead Fadilpašić

January 19, 2024 at 12:47 PM·2 min read

Magnifying glass enlarging the word 'malware' in computer machine code.

Cybersecurity researchers from Jamf Threat Labs have uncovered a new piece of malware targeting macOS users.

The malware, though unnamed, shares many similarities with another malicious piece of code discovered in 2021, called ZuRu.

In a detailed report, the researchers said the malware was found hiding in three separate, pirated software. The software, including Microsoft Remote Desktop, was found on a Chinese website that provides links to different pirated applications.

The ghost of ZuRu

If a user downloads and runs any of the compromised applications, the malware will download and execute multiple payloads in the background. These payloads are all tasked with different things, from serving as a dropper, to being a backdoor, to working as a persistent downloader to deliver additional malicious payloads.

The targets, obviously, seem to be Chinese macOS users, similar to what ZuRu did three years ago.

Back in 2021, cybersecurity researchers from Objective-See and Trend Micro observed ZuRu hiding in pirated versions of applications such as iTerm, SecureCRT, Navicat Premium, and Remote Desktop Client. The people that downloaded these apps found them working as intended, but were oblivious to the fact that a Python script was being executed in the background.

This script stole sensitive data from the victim endpoint and sent them to a command & control (C2) server used by the attackers.

“It’s possible that this malware is a successor to the ZuRu malware given its targeted applications, modified load commands and attacker infrastructure,” Jamf’s researchers said.

Pirated software is a great place to hide malware, the researchers also added, as users understand they’re engaged in illegal activity and expect their antivirus programs to raise a flag. “This leaves them willing to skip past any security warning prompts built into the operating system such as Gatekeeper, which informs the user that these applications are not safe to open,” they concluded.

Thus, the best way to protect against such threats is not to steal and download pirated software in the first place.

More from TechRadar Pro

A key part of Foxconn has been hit by the Lockbit ransomware
Here's a list of the best firewalls today
These are the best endpoint protection services right now

Yahoo Sports
Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race
Race organizers say they'll revoke a Trump fundraiser's suite license if he holds an event for the former president on Sunday at the race.
14h ago
Yahoo Sports
2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick
Yahoo Sports' Charles McDonald breaks down the Broncos' 2024 draft.
2d ago
Yahoo Sports
NFL Draft: Packers fan upset with team's 1st pick, and Lions fans hilariously rubbed it in
Not everyone was thrilled with their team's draft on Thursday night.
4d ago
Yahoo Sports
Chiefs sign Travis Kelce to new contract that reportedly makes him highest-paid TE in NFL
Travis Kelce has reportedly gotten a raise.
7h ago
Yahoo Sports
NFL Draft grades for all 32 teams | Zero Blitz
Jason Fitz and Frank Schwab join forces to recap the draft in the best way they know how: letter grades! Fitz and Frank discuss all 32 teams division by division as they give a snapshot of how fans should be feeling heading into the 2024 season. The duo have key debates on the Dallas Cowboys, New York Giants, New Orleans Saints, Los Angeles Rams, New England Patriots, Las Vegas Raiders and more.
9h ago
Yahoo Sports
NFL Draft: Bears take Iowa punter, who immediately receives funny text from Caleb Williams
There haven't been many punters drafted in the fourth round or higher like Tory Taylor just was. Chicago's No. 1 overall pick welcomed him in unique fashion.
2d ago
Yahoo Sports
Ryan Reynolds and Rob McElhenney, after Wrexham success, purchase stake in Liga MX’s Necaxa
Reynolds and McElhenney are the latest celebrities to invest in Necaxa in recent years.
8h ago
Yahoo Sports
The expanded 12-team College Football Playoff is here — and it already has problems
There is cause for excitement around the new playoff format. There's also lots of complaints and criticism to go around.
16h ago
Yahoo Sports
Joel Embiid not happy that Knicks fans took over 76ers home playoff games: It 'pisses me off'
"I don't think that should happen. It's not OK."
1d ago
Autoblog
Rivian put out a feeler to test buyers' willingness to spend on a new R2
Members of the Rivian subreddit posted details of a survey they received, asking how much they'd be willing to spend on different R2 configurations.
15h ago
Yahoo Sports
Cowboys owner Jerry Jones compared his 2024 NFL Draft strategy to robbing a bank
Dallas Cowboys owner Jerry Jones made an amusing analogy when asked why the team selected three offensive lineman in the 2024 NFL Draft.
2d ago
Yahoo Sports
2024 NFL Draft grades: Kansas City Chiefs get even richer with one of the best hauls this year
Yahoo Sports' Charles McDonald breaks down the Chiefs' 2024 draft.
2d ago
Yahoo Finance
The stock market has a 'systemic problem'
Rising Treasury yields are once again a headwind for stocks. Strategists don't see relief coming unless Fed Chair Jerome Powell is surprisingly dovish in his press conference on Wednesday.
12h ago
Yahoo Sports
2024 NFL Draft grades: Baltimore Ravens do what they do best — let good players fall into their laps
Yahoo Sports' Charles McDonald breaks down the Ravens' 2024 draft.
2d ago
Yahoo Sports
2024 NFL Draft: Fantasy football fits we love — and some we're questioning
With the NFL Draft in the books, fantasy football Matt Harmon breaks down the landing spots he loved to see, and those he's not a fan of.
13h ago
Yahoo Finance
Jamie Dimon is worried the US economy is headed back to the 1970s
JPMorgan's CEO is concerned the US economy could be in for a repeat of the stagflation that hampered the country during the 1970s.
6d ago
Yahoo Sports
2024 NFL Draft grades: Minnesota Vikings risked a lot to get J.J. McCarthy and Dallas Turner
Yahoo Sports' Charles McDonald breaks down the Vikings' 2024 draft.
1d ago
Yahoo Sports
Broncos, Jets, Lions and Texans have new uniforms. Let's rank them
Which new uniforms are winners this season?
6d ago
Yahoo Sports
2024 NFL Draft grades: Los Angeles Chargers begin Jim Harbaugh's roster restock with very good class
Yahoo Sports' Charles McDonald breaks down the Chargers' 2024 draft.
2d ago
Yahoo Sports
NFL Draft fashion: Caleb Williams, Malik Nabers dressed to impress, but Marvin Harrison Jr.'s medallion stole the show
Every player was dressed to impress at the 2024 NFL Draft.
4d ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

MacOS devices are being targeted by pirated apps that want to hijack your machine

The ghost of ZuRu

More from TechRadar Pro

Recommended Stories

Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race

2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick

NFL Draft: Packers fan upset with team's 1st pick, and Lions fans hilariously rubbed it in

Chiefs sign Travis Kelce to new contract that reportedly makes him highest-paid TE in NFL

NFL Draft grades for all 32 teams | Zero Blitz

NFL Draft: Bears take Iowa punter, who immediately receives funny text from Caleb Williams

Ryan Reynolds and Rob McElhenney, after Wrexham success, purchase stake in Liga MX’s Necaxa

The expanded 12-team College Football Playoff is here — and it already has problems

Joel Embiid not happy that Knicks fans took over 76ers home playoff games: It 'pisses me off'

Rivian put out a feeler to test buyers' willingness to spend on a new R2

Cowboys owner Jerry Jones compared his 2024 NFL Draft strategy to robbing a bank

2024 NFL Draft grades: Kansas City Chiefs get even richer with one of the best hauls this year

The stock market has a 'systemic problem'

2024 NFL Draft grades: Baltimore Ravens do what they do best — let good players fall into their laps

2024 NFL Draft: Fantasy football fits we love — and some we're questioning

Jamie Dimon is worried the US economy is headed back to the 1970s

2024 NFL Draft grades: Minnesota Vikings risked a lot to get J.J. McCarthy and Dallas Turner

Broncos, Jets, Lions and Texans have new uniforms. Let's rank them

2024 NFL Draft grades: Los Angeles Chargers begin Jim Harbaugh's roster restock with very good class

NFL Draft fashion: Caleb Williams, Malik Nabers dressed to impress, but Marvin Harrison Jr.'s medallion stole the show