Pirri/GoSearch22įourth on our list is the infamous Pirri/GoSearch 22, the first malware to target M1 Macs. Moreover, as of February 17, this Mac malware has affected endpoints across 153 countries, including high volume detection in the United States, Canada, Germany, the United Kingdom, and France. To infect machines, Silver Sparrow uses the macOS Installer Javascript API. Most importantly, the malware targets Mac machines with an M1 processor, as discovered by Red Canary. Silver Sparrowĭubbed as Silver Sparrow, this Mac malware so far has infected 29,139 macOS endpoints. The malware has been found in a ripped version of TabBarInteraction. Moreover, it can upload and download files. Once installed the backdoor records the victim’s microphone, camera, and keyboard. This malware targets Xcode developers with EggShell Backdoor and misuses the run script feature in Apple’s Xcode IDE. Second on our list of top Mac malware is XcodeSpy, a trojan hidden in Xcode projects in GitHub.
