Skip to main content

Beware — even Mac open-source apps can contain malware

Installing apps on a Mac is generally considered to be safer than doing so on Windows and open-source software is usually benign but there are exceptions to both of these assumptions that can do untold damage to your privacy and security.

A recent discovery by Trend Micro provides a startling example of this risk. An open-source app designed to help Mac owners with iPhone and iPad app signing has been altered to include a nasty hack that steals your Apple Keychain data. The original app is called ResignTool and it’s available for free on the popular open-source site, GitHub. The app is six years old and both the code and the ready-to-run app can be downloaded from GitHub. That isn’t the problem.

A pair of glasses rests on a desk in front of multiple computer monitors filled with code.
Image used with permission by copyright holder

The issue arises from how easy it is to access the code, make changes and upload elsewhere as if it’s the same app. Very little work has to be done by the hacker to deliver their malware under the guise of a genuinely good-intentioned app.

Recommended Videos

If you make the mistake of downloading the malware version of an open-source app, you might be handing over the keys to your Apple kingdom since your Mac automatically syncs passwords you’ve stored on your iPhone and iPad in the Keychain. Every app and every website login could be stolen, including passwords to financial apps and banking websites.

There are common-sense solutions to ease these concerns. Critically important apps and websites should have two-factor authentication enabled. If possible, get apps from the Mac App Store that have been tested to be safe. If you download from a website, make sure you know and trust the source. You also might want to find out if your Mac could benefit from antivirus protection.

Alan Truly
Alan Truly is a Writer at Digital Trends, covering computers, laptops, hardware, software, and accessories that stand out as…
Window management in macOS annoys me. This free app was the fix I needed
Swift Shift app running on a MacBook.

Apple’s approach to Mac computing is rather odd. The unwavering focus on simplicity, fluidity, and elegance sets it apart from Windows. But at the same time, it can feel a lot restrictive. Nothing exemplifies that better than app windows in macOS.

Until macOS Sequoia, Apple didn’t even offer proper window tiling and snapping options. Windows has served them for a while now, and in a fashion that even power users would approve. 

Read more
I used a free app to fix my biggest problem with macOS
Depicting of the Maccy clipboard app for macOS on a laptop with letters inb the background.

I recently found myself assisting my sister with a research project. Writing a science paper is a notoriously taxing process because it is excruciatingly drab to write one,  but at the same time, you have to be meticulous with every single statement. Citations are a crucial element, and depending on the topic you have picked, you may have to sprinkle a few links in every line.

In my case, my citation list had over 140 links, a healthy few of which were open across different tabs and pushing Chrome to its limits. Yet, the most arduous part was not the struggling web browser, but the chore of cycling through tabs, merely to copy the URL or citation details from each research paper.

Read more
9 macOS Sequoia features every Mac user should know
macOS Sequoia being introduced by Apple's Craig Federighi at the Worldwide Developers Conference (WWDC) 2024.

Apple’s macOS Sequoia operating system launched with a whole heap of interesting new features, and there’s a lot to try if you’ve just recently updated your Mac. But which new additions are worth your time, and which can be passed over?

That’s the question we’re aiming to answer today. We’ve scoured macOS Sequoia to find the nine key features that every Mac user should know about. From Apple Intelligence to iPhone Mirroring, these are the tools and technologies that you’ll want to try next.

Read more