Skip to main content

Malwarebytes finds the ‘first Mac malware of 2017,’ and Apple calls it ‘Fruitfly’

macos sierra update windows 10 creators install features
Bill Roberson/Digital Trends
Apple’s MacOS, once known as OS X, is believed by many to be completely free of malware — so free, in fact, that you don’t need to run any kind of software to protect against it. That’s for those Windows users to worry about.

MacOS is indeed less of a target than Windows 10, and whether that’s because it’s used on less than 8 percent of all PCs or that it’s inherently more secure has been a topic of some debate. Nevertheless, the fact is that you’re not completely worry-free running a Mac. And now, some researchers at security software company Malwarebytes have found the first piece of MacOS malware for 2017.

Malwarebytes was informed of the new malware by a particularly perceptive IT administrator, who noticed that one of his Macs was engaging in some unusual network traffic. As Malwarebytes staff looked into things, they discovered a piece of malware written with “antiquated code” that had likely existed — primarily on biomedical research center computers — for some time.

The code is simple but ingenious, made of only two files but capable of communicating with a remote command and control server, and of taking screenshots and sending them along. Some of the code made calls to functions that haven’t existed since before OS X, marking the code as evidence that Macs have indeed suffered from malware since the earliest days. But it’s not been untouched since its creation, with code referencing OS X 10.10 Yosemite.

Regardless of whether the malware is really that old or just appears to be, it’s relatively easy to discover and eradicate. Malwarebytes’ own software will do the job, detecting it as OSX.Backdoor.Quimitchin. As the company summarizes, “Ironically, despite the age and sophistication of this malware, it uses the same old unsophisticated technique for persistence that so many other pieces of Mac malware do: a hidden file and a launch agent. This makes it easy to spot, given any reason to look at the infected machine closely (such as unusual network traffic). It also makes it easy to detect and easy to remove.”

Apple itself is aware of the malware, calling it “Fruitfly,” and has since released an update to protect against future infections. The moral of the story, of course, is that although you might think your Mac is less of a target than Windows 10, you’ll want to make sure to keep an eye on things because malware does exist for MacOS. You should consider running some kind of malware software on your Mac, and scan it periodically with an application like Malwarebytes to make sure you’re not infected.

Editors' Recommendations

Mark Coppock
Mark has been a geek since MS-DOS gave way to Windows and the PalmPilot was a thing. He’s translated his love for…
The best Mac keyboard shortcuts for 2023
Apple iMac with Retina 5K Display review hand on mouse

Many Mac owners swear that keyboard shortcuts help simplify their lives. If you’re new to a Mac, learning all the available keyboard shortcuts can be a real challenge. Quite a few of these shortcuts will now work in iPadOS, too, thanks to the Magic Keyboard available to iPad Pro users.

We’ve put together a list of the most important shortcuts you should know. You can also take a look at our list of the best Mac apps for even more Apple shortcuts.
The most important shortcuts

Read more
Apple’s serious miscalculation with the 15-inch MacBook Air
Apple's 15-inch MacBook Air placed on a desk.

Did Apple overestimate demand for a larger MacBook Air? A recent report suggests Apple reduced orders from its supply chain, indicating sales of the largest budget MacBook fell short of expectations.

According to DigiTimes, which specializes in supply chain news, 15-inch MacBook Air sales seem to be off to a bad start. People with knowledge of the matter are reported to say that Apple cut the shipment volume by half in July 2022.

Read more
Apple may be working on a crazy modular MacBook with 3 screens
Apple's 15-inch MacBook Air placed on a desk.

The Framework laptop has shown that modular laptops can offer something really compelling to customers, and it seems that Apple might have taken notice. That’s because a newly granted patent (number 11709527) suggests the Cupertino, California company is considering a modular MacBook that could let you come up with all kinds of crazy combinations of screen, keyboard, and more.

For example, some of the illustrations in Apple’s patent document show a device with two displays, with the MacBook keyboard replaced entirely by a second screen. This display could be used as an Apple Pencil input area or as a virtual keyboard, something we know Apple is already working on.

Read more