Xagent malware now also infects Mac computers

[OyaYansa]

New version of Xagent malware capable of infecting Mac computers. This sophisticated computer virus, which had previously been identified in Windows, Linux, iOS and Android systems, is now also targeted against macOS computers.

Behind Xagent is APT28, a Russian cyberspeed group that has been in place since 2007. These hackers are often blamed for attacks and incursions into computer systems from other countries, the last of which was interference in the presidential election Of the United States of 2016.

According to the researchers of Bitdefender, Xagent is a backdoor that, once installed in the computer, waits for the appropriate time not to be detected, and when it has free path connects to the Internet to initiate communication with C & C servers And download the payload modules.

When the malware is fully operational, it is capable of taking screenshots, detecting system hardware and software configurations, or running additional files, stealing passwords stored in the browser, and getting iPhone backups stored in The computer of the victim.

At the moment, Bitdefender experts are not quite sure how this malware is being distributed, but believe it would be spreading through Komplex, a malware downloader that exploits a macOS vulnerability similar to the one used by MacKeeper. The investigation is still ongoing, so an in-depth analysis has not yet been released.

If you want to prevent the security of your Mac is compromised by this type of malware, we recommend that you avoid downloading programs from any source other than the App Store or a trusted developer.