Skip to main content
  1. Home
  2. Computing
  3. News

Malwarebytes finds the ‘first Mac malware of 2017,’ and Apple calls it ‘Fruitfly’

By

macos sierra update windows 10 creators install features
Bill Roberson/Digital Trends
Apple’s MacOS, once known as OS X, is believed by many to be completely free of malware — so free, in fact, that you don’t need to run any kind of software to protect against it. That’s for those Windows users to worry about.

MacOS is indeed less of a target than Windows 10, and whether that’s because it’s used on less than 8 percent of all PCs or that it’s inherently more secure has been a topic of some debate. Nevertheless, the fact is that you’re not completely worry-free running a Mac. And now, some researchers at security software company Malwarebytes have found the first piece of MacOS malware for 2017.

Recommended Videos

Malwarebytes was informed of the new malware by a particularly perceptive IT administrator, who noticed that one of his Macs was engaging in some unusual network traffic. As Malwarebytes staff looked into things, they discovered a piece of malware written with “antiquated code” that had likely existed — primarily on biomedical research center computers — for some time.

Related

The code is simple but ingenious, made of only two files but capable of communicating with a remote command and control server, and of taking screenshots and sending them along. Some of the code made calls to functions that haven’t existed since before OS X, marking the code as evidence that Macs have indeed suffered from malware since the earliest days. But it’s not been untouched since its creation, with code referencing OS X 10.10 Yosemite.

Regardless of whether the malware is really that old or just appears to be, it’s relatively easy to discover and eradicate. Malwarebytes’ own software will do the job, detecting it as OSX.Backdoor.Quimitchin. As the company summarizes, “Ironically, despite the age and sophistication of this malware, it uses the same old unsophisticated technique for persistence that so many other pieces of Mac malware do: a hidden file and a launch agent. This makes it easy to spot, given any reason to look at the infected machine closely (such as unusual network traffic). It also makes it easy to detect and easy to remove.”

Apple itself is aware of the malware, calling it “Fruitfly,” and has since released an update to protect against future infections. The moral of the story, of course, is that although you might think your Mac is less of a target than Windows 10, you’ll want to make sure to keep an eye on things because malware does exist for MacOS. You should consider running some kind of malware software on your Mac, and scan it periodically with an application like Malwarebytes to make sure you’re not infected.

Editors’ Recommendations

Topics
Mark Coppock
Mark Coppock
Computing Writer
Mark Coppock is a Freelance Writer at Digital Trends covering primarily laptop and other computing technologies. He has…
Two of the best Apple Intelligence features on Mac still need work
Apple Intelligence in macOS Sequoia being used to summarize a selection of text.

Recently, Apple launched the macOS Sequoia 15.1 beta, and with it came a bunch of new Apple Intelligence features. Not everything, mind you – many of the flagship tools, like the Image Playground and Siri’s more powerful capabilities, might not debut until next year. But there’s enough Apple Intelligence here to get a feel for the new system.

Ever since the beta came out, there have been two areas of Apple Intelligence I’ve wanted to focus my attention on: Mail summaries and Apple’s suite of Writing Tools. These are some of the most fleshed-out Apple Intelligence elements that exist in macOS Sequoia right now, and also potentially two of the most useful, so it made sense to channel my efforts toward them.

Read more
macOS Sequoia fixes a problem that’s bugged me for years
The iPhone Mirroring feature from macOS Sequoia being demonstrated at the Worldwide Developers Conference (WWDC) 2024.

Sometimes, people think it’s the big, headline features -- like Apple Intelligence -- that make an operating system great. But there’s one new feature in macOS Sequoia that shows the opposite is true -- that a collection of less glamorous, yet meaningful changes can have a much bigger impact.

I’m talking about Apple’s new iPhone Mirroring feature. Or rather, one particular element of iPhone Mirroring: its new drag-and-drop ability. Even in the few short days it’s been available, it’s managed to improve my daily workflow and fix an issue that’s been bugging me for years.

Read more
macOS Sequoia may be breaking important security tools
macOS Sequoia being introduced by Apple's Craig Federighi at the Worldwide Developers Conference (WWDC) 2024.

Apple released macOS Sequoia on Monday, but the update has broken the functionality for some networking and security tools from companies such as Microsoft, CrowdStrike, SentinelOne, and more, as Bleeping Computer reports. Affected users on Reddit are sharing their issues with security software such as ESET Endpoint Security and CrodStrike Falcon.

Other reported issues include firewalls causing packet corruptions, browser SSL failures, and the inability to use the "curl" or "get" commands. Users can fix the problem quickly by turning off the tools, which indicates an incompatibility issue with the network stack, but this is not the fix many may be looking for.

Read more