Cuckoo Malware Strikes: macOS Users Beware of Fake Spotify App
May 6, 2024Cybersecurity researchers at Kandji have identified a new macOS malware, named 'Cuckoo', masquerading as a music converter application similar to Spotify.
Cuckoo is capable of running on both Intel and ARM-based Macs and has been found on websites offering counterfeit Spotify music converter apps.
The malware filches a variety of data including keychain contents, screenshots, webcam pictures, browsing history, messaging app data, and cryptocurrency wallet information.
It exploits the macOS keychain to gain access to online accounts and sensitive data, and ensures its persistence on the system through LaunchAgent.
Cuckoo was signed with a legitimate developer ID from China, which may have helped it bypass some security measures.
Users are encouraged to download software from reputable sources, inspect emails and attachments carefully, and utilize trustworthy antivirus and anti-malware tools to safeguard against malware like Cuckoo.
Summary based on 5 sources
Get a daily email with more Tech stories
Sources
Lifehacker • May 6, 2024
This Mac Malware Can Take Screenshots of Your ComputerTechRadar pro • May 6, 2024
A dangerous new malware is targeting Macs of all kinds — here's how to stay safeThe Hacker News • May 6, 2024
New 'Cuckoo' Persistent macOS Spyware Targeting Intel and Arm MacsNews9live • May 6, 2024
New ‘Cuckoo’ Malware Targets Apple macOS Devices with Fake Password Prompts