When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
According to the researchers, this is the first upgrade to XCSSET in three years.
It now has enhanced obfuscation methods, updated persistence mechanisms, and new infection strategies.
Image credit: Shutterstock
It includes a code editor, debugger, Interface Builder, and tools for testing and deploying apps.
In essence, XCSSET is an infostealer.
For obfuscation, XCSSET now uses a significantly more randomized approach for generating payloads to infect Xcode projects.
When it comes to updated persistence mechanisms, the new variant uses two techniques: zshrc, and dock.
They should also only install apps from trusted sources, such as a software platforms official app store.
The in-depth analysis of the malware and its modus operandi can be found onhere.
