Scary new malware secretly takes screenshots of macOS computers, but there’s a fix

a person sitting in front of a computer screen: Apple malware

© Provided by BGR
Apple malware

At this point, we are running out of ways to tell you to keep all of your software up to date on every device you own, but yet another major vulnerability has been uncovered, so we’ll say it again anyway: Update every piece of software on all of your devices.

The reason we felt the need to issue this alert again is because Apple patched a zero-day exploit in macOS Big Sur with the 11.4 update this week that reportedly could have allowed hackers to secretly take screenshots of your computer screen without your permission. As the security researchers at the software company Jamf explained in a blog post, the scary exploit (CVE-2021-30713) bypassed Apple’s Transparency Consent and Control (TCC) framework, which controls the resources that an application has access to, such as giving webcam and microphone access to Zoom.

More Amazon Deals from BGR

Today’s Top Deal

Prime Day 2021 started early for the Fire TV Stick 4K — get one for just $29.99!

Price: $29.99

You Save: $10.00 (25%)

Coupon Code: HELLOFTV (by 6/15)

Buy Now

Click here to read the full article.

“The exploit in question could allow an attacker to gain Full Disk Access, Screen Recording, or other permissions without requiring the user’s explicit consent — which is the default behavior,” Jamf said. “We, the members of the Jamf Protect detection team, discovered this bypass being actively exploited during additional analysis of the XCSSET malware, after noting a significant uptick of detected variants observed in the wild. The detection team noted that once installed on the victim’s system, XCSSET was using this bypass specifically for the purpose of taking screenshots of the user’s desktop without requiring additional permissions.”

Trend Micro first uncovered the XCSSET malware last August, explaining at the time that the attackers were injecting malicious code into Xcode projects that were then uploaded to Github. End users would then download the projects and the malware would spread on to their Macs.

Needless to say, a bad actor having the same access to your computer as trusted apps such as Zoom or Slack could be incredibly dangerous for macOS users. The good news is…