One of the most common Windows viruses makes the leap to Mac

most common Windows viruses makes the leap to Mac2

A malware used to steal data from Windows computer users has been “mutated” to also work on macOS systems, with the aim of finding more victims on a system that, traditionally, has not had as many virus problems.

That doesn’t mean there are no Mac viruses, of course; in fact, thinking like this only helps hackers and attackers to enter our system, because we lower our guard and do not take all possible precautions. And with the new XLoader, you need to take them all.

According to BleepingComputer, XLoader is being offered on forums frequented by hackers and on the so-called “Dark Web”, which is normally out of the reach of the average user. Launched last February, since then its popularity has exploded, thanks mainly to its cross-platform capacity: it works on both Windows and macOS, and does not require dependencies to function.

In fact, the XLoader code comes from Formbook, a well-known malware capable of obtaining data from Windows systems; this is known thanks to the work of some members, who managed to reverse engineer XLoader and found the same executable that Formbook uses. It was then that the supposed creator claimed that the developer behind Formbook has participated in the creation of XLoader, and that they have similar functionalities. Formbook has been one of the most popular malware for Windows, starring in at least 1,000 massive campaigns in the last three years.

XLoader is officially billed as an “advanced password retriever”, but that’s just a way of saying that it steals users’ passwords. Specifically, it attacks web browsers such as Chrome, Firefox, Opera, and Edge, as well as email clients such as Outlook, Thunderbird, and Foxmail. Passwords obtained in this way can be used to steal victims’ accounts across all their services, including email or banking services.

This malware acts as a botnet, a set of infected computers controlled by the attacker, and its creators offer it as a subscription; For $49 a month, they offer the macOS version and access to the server that stores the stolen passwords. In contrast, the Windows version is more expensive, priced at $59 per month.