Skip to main content
  1. Home
  2. Computing
  3. News

This devious scam app proves that Macs aren’t bulletproof

Alex Blake
By

Pirated software can cause all kinds of headaches, but Mac users might have thought themselves largely immune thanks to Apple’s reputation for solid security. Yet, that complacency could prove quite problematic, as a new strain of nearly undetectable malware has shown.

According to research from security firm Jamf Threat Labs, pirated versions of Apple’s Final Cut Pro moviemaking app have been modified to contain cryptojacking payloads. When installed, the app starts using your Mac to mine the Monero cryptocurrency behind your back, potentially slowing down your machine as system resources are illegitimately gobbled up.

A close-up of a MacBook illuminated under neon lights.
Image used with permission by copyright holder

Worse, Jamf Threat Labs says the malware remains almost entirely undetected by both antivirus software and Apple’s own security systems. That makes it a major pest to detect and remove.

Recommended Videos

The malicious software uses the Invisible Internet Project (i2p) network to download additional components in an anonymous way that is very difficult to detect. It also disguises itself as system processes linked to macOS’ Spotlight feature, further helping it to avoid raising eyebrows.

Related

The malware is primarily distributed through torrents on The Pirate Bay shared by user “wtfisthat34698409672.” This user has uploaded similarly cracked apps, including Adobe Photoshop and Logic Pro X, that also contain cryptojacking malware.

Still dangerous today

A digital encrypted lock with data multilayers.
Getty Images

In macOS Ventura, Apple introduced a few security features that hamper the malware, but they do not stop it completely. For instance, there are more code-signing checks to ensure apps have not been modified. In the case of this malware, its authors kept much of the original Final Cut Pro code in place to make it seem like the real deal, but it was not enough to evade Ventura’s checks.

Ironically, however, Ventura only disables the legitimate part of the malware bundle — that is, the Final Cut Pro portion — while leaving the cryptojacking elements untouched. The good news is that the malware is not able to find a way past Apple’s Gatekeeper security protections without a user manually disabling them, which limits some of the damage it can cause.

It just goes to show the dangers involved in downloading and installing pirated software. Instead, it’s much better to pay for the genuine article and avoid infecting your computer. Alternatively, there are plenty of great free video-editing apps available, meaning you don’t need to pay to create movie masterpieces on your Mac.

Editors' Recommendations

Topics
Alex Blake
Alex Blake
Computing Writer
In ancient times, people like Alex would have been shunned for their nerdy ways and strange opinions on cheese. Today, he…
10 Mac trackpad gestures that everyone should be using
A person holds a MacBook Air at Apple's Worldwide Developer's Conference (WWDC) in 2023.

One of the best parts of macOS is learning and executing all of Apple’s many internal shortcuts. These are hidden commands built into the company’s hardware that are total godsends when it comes to things like click consolidation (one command instead of three clicks) and workflow optimization. Some of these commands you may already know, but we’re willing to bet there’s at least one or two we can introduce to you!

That’s our goal at any rate, and we’ve gone ahead and created this roundup of several trackpad gestures you can use in macOS for all our readers. Even if you don’t use shortcuts all the time, one of these quick executables could come in handy down the line. 
Zoom in or out

Read more
Apple quietly backtracks on the MacBook Air’s biggest issue
The MacBook Air on a white table.

The new MacBook Air with M3 chip not only allows you to use it with two external displays, but it has also reportedly addressed a storage problem that plagued the previous M2 model. The laptop now finally has much faster storage performance since Apple has switched back to using two 128GB NAND modules instead of a single 256GB module on the SSD drive.

This was discovered by the YouTuber Max Tech, who tore down the entry-level model of the MacBook Air M3 with 8GB of RAM and 256GB of storage. In his tests, thanks to the two NAND modules, the M3 MacBook Air is nearly double faster than the M2 MacBook Air. Blackmagic Disk Speed tests show that the older M2 model with the problematic NAND chip had a 1584.3 Mb/s write speed, and the newer M3 model had 2108.9 Mb/s for the M3 model, for a 33% difference. In read speeds, it was 1576.4 Mb/s on the old model and 2880.2 Mb/s on the newer model.

Read more
The 6 best ways Macs work with your other Apple devices
A person holds an iPhone in front of a MacBook.

One of the best things about using more than one Apple device is the way they interact with each other. Apple has built all kinds of clever features into its famous ecosystem, and it means your devices all work together in a way that you just don’t get from any other manufacturer.

AirDrop might be the ultimate expression of this, though that's fairly well-known. Here, we’ve picked out six other great ways your Mac works with other Apple products. Most require you to have Bluetooth and Wi-Fi enabled, as well as for you to be using the same Apple ID on all your devices. Check the System Settings app on your devices to make sure the specific features are enabled, although most should be by default.

Read more