Skip to main content

In the age of ChatGPT, Macs are under malware assault

It’s common knowledge — Macs are less prone to malware than their Windows counterparts. That still holds true today, but the rise of ChatGPT and other AI tools is challenging the status quo, with even the FBI warning of its far-reaching implications for cybersecurity.

That may be why software developer Macpaw launched its own cybersecurity division — dubbed Moonlock — specifically to fight Mac malware. We spoke to Oleg Stukalenko, Lead Product Manager at Moonlock, to find out whether Mac malware is on the rise, and if ChatGPT could give hackers a massive advantage over everyday users.

Recommended Videos

State-sponsored attacks

A person using a laptop with a set of code seen on the display.
Sora Shimazaki / Pexels

Apple silicon has rejuvenated Apple’s computers, with a spike in global sales ever since the chips debuted in 2020, according to Statista. All those extra Macs could make the platform a juicy target for malware writers enticed by a widening pool of potential paydays.

As Stukalenko puts it, “Because of a growing quantity of Mac computers, macOS has become an attractive target for cyberattacks … Even the notable case of North Korea’s Lazarus Group, which became one of the first state-sponsored groups to target Macs last year, keeps us on high alert.”

And while Stukalenko acknowledges that “In theory, a newer processor architecture [like Apple silicon] may be considered a safer one,” that doesn’t make it immune to threats. In fact, of all the malware samples analyzed by Moonlock, “almost all work on both Intel and ARM architectures” like the one that forms the basis of Apple silicon chips.

The ChatGPT threat

A MacBook Pro on a desk with ChatGPT's website showing on its display.
Hatice Baran / Unsplash

Ransomware often makes a big splash in the news, but it’s not the fastest-rising Mac malware threat, according to Moonlock — instead, that dubious accolade goes to various types of stealers. This malware usually takes the form of a trojan that gathers information from a victim’s system, Stukalenko says, such as usernames and passwords, credit card information, or login details. This category also includes keyloggers, which keep track of everything you type in the hopes of picking up sensitive info.

Another rising threat for Mac users? ChatGPT. While the chatbot itself is not malware, it has the potential to be misused by bad actors who, with some clever prompt engineering, can task it with writing malicious code for them. What do the engineers at Moonlock think about ChatGPT’s capacity as a hacker’s helper?

“СhatGPT can be used for quick prototyping of malware by generating multiple code snippets,” Stukalenko says, giving hackers an extra weapon in their arsenal against their targets. As well as that, the chatbot can be used “to quickly generate a similar new code based on the initial code,” resulting in “polymorphic” malware. This is able to “change its appearance continuously and rapidly morph its code” in order to evade antivirus detection. While not hugely popular right now, it could become a serious problem in the near future.

A person sits in front of a laptop. On the laptop screen is the home page for OpenAI's ChatGPT artificial intelligence chatbot.
Viralyft / Unsplash

Despite OpenAI adding guardrails to ChatGPT that are meant to protect against malicious code generation, these defenses can be easily overcome, Stukalenko says. For instance, the Moonlock team was able to use ChatGPT to generate working encryption code that could be used in ransomware, working their way around the guardrails in a relatively straightforward fashion.

There’s some good news though. Even though ChatGPT can spin up functioning malware code, it is also prone to providing users with faulty outputs that behave weirdly, Stukalenko says, much like how some image generators create images of people with seven fingers. That’s similar to what cybersecurity experts told us when we quizzed them on the same topic in May 2023.

And Stukalenko notes that “ChatGPT brings higher risks for the whole cybersecurity ecosystem, but Mac users specifically are in no way under a more significant risk than users of any other [operating system].” In other words, this is a platform-agnostic problem, not a macOS problem.

How to stay safe

The MacBook Pro on a wooden table.
Digital Trends

So, is it correct to feel that Macs are safer than Windows machines? Stukalenko says that belief is not totally unfounded. “Apple prioritizes security, and the widely held belief that macOS is more protected than Windows has weight behind it,” Stukalenko says. “Over the years, Apple has been consistently adding more security features to macOS … Moreover, the review process of the App Store considerably reduces the risk of installing malware.”

But as we’ve seen, no system is totally beyond the clutches of viruses, trojans, and the like. As Stukalenko explains, “the robust security safeguards and the perceived system’s invulnerability have built a myth that malware doesn’t exist on macOS.”

“According to our own research,” they continue, “57% of Mac users either agree or hesitate to disagree with the statement that ‘Malware does not exist on macOS.’ This persistent misconception makes users vulnerable to potential cyberattacks.”

What can you do to stay safe on your Mac? According to Moonlock, you should prioritize downloading apps from the official App Store, as everything there has to be notarized and checked by Apple. If the app you want isn’t available there, avoid downloading apps through Google or banner ads, as these can hide malware.

Elsewhere, Stukalenko says you should avoid torrents at all costs, and install an antivirus app from a trusted developer. Put these tips into practice and you’ll go a long way to keeping your Mac safe — even from malware built with the automated assistance of ChatGPT.

Alex Blake
Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…
OpenAI plans to make Deep Research free on ChatGPT, in response to competition
OpenAI's new typeface OpenAI Sans

OpenAI has plans to soon make its Deep Research function available for free tier ChatGPT users.

The feature has been available since early February to Plus, Pro, Enterprise, and Edu subscribers; however, the AI company plans to expand availability beyond its paid users. Deep Research goes beyond the standard query results of the brand’s more traditional AI models. The AI agent has the ability to do extended research tasks on command without the help of a human. The feature can provide a detailed report on the subject of your choosing that might take between five and 30 minutes to compile.  

Read more
Viral trend drives ChatGPT to 500 million users
glasses and chatgpt

OpenAI’s flagship service ChatGPT remains as popular as ever, with the brand having hit a 500 million active user milestone in recent days amid the Studio Ghibli viral trend that came with the brand introducing its GPT-4o-powered image generation. 

The company’s CEO, Sam Altman, shared on X on Monday that ChatGPT gained “one million users in the last hour.” He compared the user spike to the burgeoning interest in OpenAI during its early days in 2022, when the chatbot gained one million users in five days, VentureBeat noted.  

Read more
The delay is over — you can now generate images with ChatGPT for free
OpenAI ChatGPT image

After an explosive launch, a viral trend, and some melted GPUs, the new image generation feature for ChatGPT is now available to free users. The feature originally launched on March 25 but because paid subscribers utterly flooded OpenAI with requests for Ghiblified images, CEO Sam Altman announced the next day that the rollout to free users would be delayed "a while."

Luckily, it appears this delay is over just five days later -- Altman has already published another X post saying that "image gen [is] now rolled out to all free users!"

Read more