New Mac Malware for Sale on Dark Web: Total Control of Your Mac at $60,000
A security company recently discovered a concerning development in the world of Mac threats. Guardz Cyber Intelligence Research, a cybersecurity firm, used OpenAI’s ChatGPT to uncover malicious software being sold on the dark web. This new Mac malware is available for purchase at the steep price of $60,000, and there is an even more damaging version priced at $80,000.
Once installed on a Mac, this malware grants the attacker complete control over the victim’s device. What makes matters worse is that it operates silently and remains incredibly difficult to detect or remove. This potent malware is capable of stealing vast amounts of personal information from the victim. However, there is a silver lining as users can take precautions to avoid falling victim to this threat.
Guardz Cyber Intelligence Research detailed its discovery in a blog post titled The Massive macOS Threats Trending in the Dark Web. The initial malware they found is called ShadowVault, which casts doubt on the long-held belief that Macs are safer than Windows and Linux platforms. Intrigued by these findings, the Guardz CIR team decided to go further and used artificial intelligence to uncover additional macOS threats lurking on the dark web. Their AI tool, ChatGPT, provided valuable insights that motivated the researchers to delve deeper into the cybercrime underground.
The newfound threat, named HVNC, utilizes a technique known as Hidden Virtual Network Computing (VNC). VNC is a legitimate method that allows system administrators to remotely troubleshoot and control an employee’s machine. However, HVNC is a nefarious variation of this technology that cybercriminals use to gain unauthorized access to a victim’s computer without their knowledge. Once the attacker gains control, they create a new desktop session and silently join the victim’s computer, leaving no trace of their presence.
The malware, released in April 2023, has been continuously developed since then. Its primary objective is to steal a wide range of sensitive information, including login credentials, financial data, and personal information. HVNC is distributed through various channels, such as email attachments, malicious websites, and exploit kits. Once it infiltrates a victim’s system, it establishes a connection with the attacker’s command-and-control server, enabling the cybercriminal to interact with the compromised device.
While Apple has not commented on this particular threat, users can take proactive measures to safeguard their devices, just as they would with other potential threats. Best practices include refraining from opening email attachments from unknown sources, avoiding suspicious websites, and utilizing password managers and virtual private networks (VPNs) to protect credentials and online identities.
It is crucial to stay vigilant in the face of evolving cybersecurity threats. By adopting secure practices and staying informed, Mac users can further fortify their devices against potential attacks.
