Skip to main content

This dangerous Mac malware can infiltrate your entire system

A newly uncovered malware designed to target Macs has been effective in obtaining access to systems and stealing sensitive data.

The discovery was detailed by internet security company ESET, which named the malware CloudMensis because of its reliance on cloud storage services.

A large monitor displaying a security hacking breach warning.
Stock Depot / Getty Images

As reported by Bleeping Computer and PCMag, the malware can successfully take screenshots of a user’s system without their knowledge, in addition to registering keystrokes, taking files and documents (even from removable storage devices), and listing emailing messages and attachments.

Recommended Videos

CloudMensis was originally detected by ESET in April 2022. It makes use of pCloud, Yandex Disk, and Dropbox in order to execute command-and-control (C2) communication.

The malware is fairly advanced in the sense that it provides the ability to carry out numerous malicious commands, such as viewing running processes, “running shell commands and uploading the output to cloud storage,” and downloading and opening arbitrary files.

While CloudMensis has now been uncovered, the identity of those behind the malware attack remains unknown.

“We still do not know how CloudMensis is initially distributed and who the targets are,” ESET researcher Marc-Etienne Léveillé said. “The general quality of the code and lack of obfuscation shows the authors may not be very familiar with Mac development and are not so advanced. Nonetheless, a lot of resources were put into making CloudMensis a powerful spying tool and a menace to potential targets.”

ESET’s analysis reveals that the threat actors managed to infiltrate their first Mac target on February 4, 2022. Interestingly, CloudMensis has only been used a handful of times to infect a target. Furthermore, the Objective-C coding abilities from the hackers reveals they’re not well-versed in the MacOS platform, according to Bleeping Computer.

A depiction of a hacker breaking into a system via the use of code.
Getty Images

When ESET examined the cloud storage addresses that CloudMensis was associated with, the corresponding metadata from the cloud drives revealed “there were at most 51 victims” from February 4 until April, 2022.

Once the malware is executed on the Mac system, CloudMensis is then able to completely evade Apple’s MacOS Transparency Consent and Control (TCC) system without being detected. This feature alerts users to a window where they’ll need to grant specific permission for apps that perform screen captures or monitor keyboard events.

By avoiding TCC, CloudMensis can subsequently view the Macs’ screens and associated activity, as well as scan removable storage devices.

In any case, the malware is clearly more on the sophisticated end if it can bypass Mac’s own security measures with such relative ease. And it’s not just Macs that are exposed — PCMag highlights how the malware’s computing code confirms it can also infiltrate Intel-powered systems.

“CloudMensis is a threat to Mac users, but its very limited distribution suggests that it is used as part of a targeted operation,” ESET said. “At the same time, no undisclosed vulnerabilities (zero-days) were found to be used by this group during our research. Thus, running an up-to-date Mac is recommended to avoid, at least, the mitigation bypasses.”

If you own a Mac and want to check for viruses and malware, then be sure to head over to our guide explaining how to do so.

Zak Islam
Former Digital Trends Contributor
Zak Islam was a freelance writer at Digital Trends covering the latest news in the technology world, particularly the…
Attention to detail is Apple’s not-so-hidden hardware superpower
Apple Mac Studio 2025 top down view showing desktop.

I've reviewed well over 300 laptops, a handful of displays, and a smattering of accessories. Naturally, I've gained an appreciation for great hardware design and construction, and I can pretty immediately get a sense of where a device stacks up. While several companies make great hardware, one stands apart. I'm talking about Apple, and I'm writing this after having reviewed the new Mac Studio, the MacBook Air 13 (M4), the MacBook Air 15 (M4), and the Apple Studio Display.

At the end of 2023, I wrote extensively about why I made the decision to switch to Mac after decades of Windows loyalty. I made that decision based in part on the outstanding power-performance ratio that Apple Silicon brings to laptops, -- along with a growing frustration with Windows. Apple's software isn't nearly perfect, especially considering the company's flawed rollout of Apple Intelligence. But since I've made the switch -- which included migrating from an Android smartphone to an iPhone and incorporating an Apple Watch -- I've been extremely happy. And reviewing so many Apple products at once just reinforced an impression that's been growing on me for a while: nobody makes hardware that's nearly as great.
It starts with the unboxing

Read more
Mac users are now in danger of a well-known Windows phishing attack
Apple MacBook Air 13 M4 rear view showing lid and logo.

If you're using a Mac, such as the new MacBook Air, you might have to be careful. A phishing attack that previously plagued Windows users has now made its way to macOS, and it's easy to fall for it.

This was spotted by 9to5Mac. Researchers from LayerX have been tracking a well-known phishing attack that caused a lot of grief to those who were tricked by it. Previously, the main target of these hackers was Windows, but Microsoft was able to largely eliminate it -- up to 90% of all attacks on Windows PCs are said to have been fixed thanks to new updates to Edge, Chrome, and Firefox that block scareware.

Read more
Here’s how Apple’s first foldable MacBook might win me over
The Zenbook Fold 17 open on a table.

Rumors have persisted for years now that Apple is working on a touchscreen MacBook, but I’ve never been truly convinced. For one thing, I don’t see how a touchscreen could improve my MacBook experience enough to justify the inevitable price rise. This is Apple we’re talking about, after all, and there’s just no way that a touchscreen MacBook will possibly come cheap.

As well as that, I’ve long agreed with Steve Jobs’ belief that adding a touchscreen to a regular MacBook is an ergonomic nightmare. Constantly reaching up to the display is a quick way to exhaust your arms, and paining its users isn’t really part of Apple’s playbook. The Mac operating system isn’t designed for touch either, and in any case, adding a touchscreen would result in all manner of greasy fingerprints on your monitor. It’s never seemed like a good idea to me.

Read more