Skip to main content

This devious scam app proves that Macs aren’t bulletproof

Pirated software can cause all kinds of headaches, but Mac users might have thought themselves largely immune thanks to Apple’s reputation for solid security. Yet, that complacency could prove quite problematic, as a new strain of nearly undetectable malware has shown.

According to research from security firm Jamf Threat Labs, pirated versions of Apple’s Final Cut Pro moviemaking app have been modified to contain cryptojacking payloads. When installed, the app starts using your Mac to mine the Monero cryptocurrency behind your back, potentially slowing down your machine as system resources are illegitimately gobbled up.

Related Videos
A close-up of a MacBook illuminated under neon lights.

Worse, Jamf Threat Labs says the malware remains almost entirely undetected by both antivirus software and Apple’s own security systems. That makes it a major pest to detect and remove.

The malicious software uses the Invisible Internet Project (i2p) network to download additional components in an anonymous way that is very difficult to detect. It also disguises itself as system processes linked to macOS’ Spotlight feature, further helping it to avoid raising eyebrows.

The malware is primarily distributed through torrents on The Pirate Bay shared by user “wtfisthat34698409672.” This user has uploaded similarly cracked apps, including Adobe Photoshop and Logic Pro X, that also contain cryptojacking malware.

Still dangerous today

A digital encrypted lock with data multilayers.
Getty Images

In macOS Ventura, Apple introduced a few security features that hamper the malware, but they do not stop it completely. For instance, there are more code-signing checks to ensure apps have not been modified. In the case of this malware, its authors kept much of the original Final Cut Pro code in place to make it seem like the real deal, but it was not enough to evade Ventura’s checks.

Ironically, however, Ventura only disables the legitimate part of the malware bundle — that is, the Final Cut Pro portion — while leaving the cryptojacking elements untouched. The good news is that the malware is not able to find a way past Apple’s Gatekeeper security protections without a user manually disabling them, which limits some of the damage it can cause.

It just goes to show the dangers involved in downloading and installing pirated software. Instead, it’s much better to pay for the genuine article and avoid infecting your computer. Alternatively, there are plenty of great free video-editing apps available, meaning you don’t need to pay to create movie masterpieces on your Mac.

Editors' Recommendations

Ranking all 12 versions of Windows, from worst to best
Windows 7 desktop.

You can tell a person's age by which version of Windows is their favorite. I have fond memories of XP and Windows 98 SE, so you can take a guess at mine, but I have colleagues who are much more enamored with Windows 7, or Windows 95. We all have something disparaging to say about Windows 8 though, and the less said about Windows Vista the better.

Ranking the different versions of Windows is about more than what era of computing you grew up in, though. There are some very serious duds in Microsoft's back catalog, just as there are a few wins too. But whether you can look back on some of Microsoft's disastrous releases with rose-tinted glasses, or have some genuine love for Microsoft's missteps, here's every version of Windows ranked from best to worst.
12. Windows ME

Read more
If you use this free password manager, your passwords might be at risk
Office computer with login asking for password and username.

Researchers have just found a flaw within Bitwarden, a popular password manager. If exploited, the bug could give hackers access to login credentials, compromising various accounts.

The flaw within Bitwarden was spotted by Flashpoint, a security analysis firm. While the issue hasn't received much -- or any -- coverage in the past, it appears that Bitwarden was aware of it all along. Here's how it works.

Read more
MacGPT: how to use ChatGPT on your Mac
The MacGPT app for macOS Monterey and Ventura.

Apple might not officially be in the AI space, but a developer has created a legitimate way to bring ChatGPT to macOS and make the chatbot accessible from your menu bar.

The aptly named MacGPT is an application developed by Jordi Bruin that allows you to install ChatGPT as a remote browser on your Mac desktop. The application has been available since the 2022 holiday season and has garnered over 370 ratings, many of which are five stars. MacGPT is currently free, however, Bruin accepts donations. Once out of beta, he will make MacGPT available at the App Store, where it will sell for $5.

Read more