Apple software developers' Xcode projects have been subjected to intrusions with an updated version of the XCSSET macOS malware with improved infection and persistence techniques, reports SC Media.
The new modular XCSSET malware variant was also better able to circumvent detection and removal through encoded payloads and enhanced error management, as well as legitimate binary, Unix command, and scripting language dependence, according to an analysis from the Microsoft Threat Intelligence team.
"These enhanced features help this malware family steal and exfiltrate files and system and user information, such as digital wallet data and notes, among others," said researchers of the first new XCSSET version in three years that was initially reported last month.
Jaron Bradley, director at Jamf Threat Labs, said these findings emphasize XCSSET malware operators' insight into macOS and the significant supply chain risk brought upon by the malware. Combating such a threat should prompt the implementation of multi-layered security tactics, added Stephen Kowski, Field CTO at SlashNext Email Security.
