blacksite solutions Pricing

Trojanized Xcode Project Slips MacOS Malware to Apple Developers

Cybercriminals are targeting Apple developers with a trojanized Xcode project, which once launched installs a backdoor that has spying and data exfiltration capabilities. XcodeSpy is comprised of a suite of free, open software development tools developed by Apple for creating software for iOS, iOS, iPadOS, watchOS and tvOS. The malicious XcodeProject installs a variant of the known EggShell backdoor on the developer’s Mac computer. This backdoor can record the victim’s microphone, camera and keyboard movements.