Skip to main content

Mac malware has been found hidden in file converter on major site

A new piece of malware targeting Macs has been found in the wild, following hot on the heels of the first piece of ransomware for the platform, which was unearthed earlier this year. The malware is being referred to as Backdoor.MAC.Elanor, and it provides further evidence that Macs aren’t as impervious to attack as they were once assumed to be.

The backdoor is apparently being hidden away in a phony file converter utility that’s being distributed via major sites like MacUpdate, according to a report from 9to5Mac. EasyDoc Converter purports to be a legitimate piece of software, but offers no functionality beyond downloading the backdoor.

Recommended Videos

MacUpdate has now been alerted to the issue, and has removed download links to the utility and delisted it from its search results. However, EasyDoc Converter is likely hosted on scores of different websites, and there could potentially be plenty of other fake pieces of software serving to distribute the backdoor.

Backdoor.MAC.Elanor could potentially be used to facilitate all manner of attacks on a victim’s computer. A hacker could use the backdoor in conjunction with other techniques to execute attacks ranging from data theft to a complete takeover of the system’s webcam.

Fortunately, the malicious app is not signed with an Apple Developer ID, which should make it easier for Mac users to avoid the backdoor. So long as your computer’s settings stipulate that it will only open apps from the App Store or from known developers, it shouldn’t be able to open.

However, there’s an important lesson about security to be learned here. There was a time when Macs weren’t considered to be at risk of malware attacks to the same extent that PCs are — evidently, that is no longer the case.

Brad Jones
Brad is an English-born writer currently splitting his time between Edinburgh and Pennsylvania. You can find him on Twitter…
Updated macOS malware variant uncovered by Microsoft
A person using a laptop with a set of code seen on the display.

Microsoft has observed a previously dormant macOS malware that has become active once again in a new variant that is targeting Apple devices of all kinds.

Microsoft Threat Intelligence shared information about the malware in a post on X, indicating that it is a new version of XCSSET that originated in 2022. The security experts explained that the updated malware has “enhanced obfuscation methods, updated persistence mechanisms, and new infection strategies.”

Read more
Apple is working on a mini-LED Studio Display, but the iMac Pro is nowhere to be found
A person using a Mac Studio with an Apple Studio Display.

If you’ve been craving a souped-up Studio Display that improves on the original model released in 2022, there’s been some good news: it looks like a new model with a mini-LED panel and a ProMotion 120Hz refresh rate is on the way. Yet it’s left me with more questions than answers about Apple’s long-lost iMac Pro.

In the world of Apple leaks, you quickly learn that there are two sources whose reliability stands above the rest: Bloomberg reporter Mark Gurman and display industry expert Ross Young. When these two agree on something, it’s pretty much nailed on, and that’s exactly what just happened regarding Apple’s Studio Display.

Read more
I might have found the answer to my Mac gaming problem
A person running Steam on the M4 MacBook Pro. Rocket League is up on the screen

I recently wrote about how the M4 Pro Mac mini -- with its tiny form factor and excellent performance, coupled with the largely headache-free experience of macOS -- has made me extremely tempted to ditch Windows once and for all. There’s just one problem with this idea, though: I’m an avid gamer, and Apple’s M4 Pro chip isn’t quite as capable as the RTX 3070 that resides in my current PC.

Then I got an email from a reader that changed my perspective.

Read more