The first malware detection on Mac M1

Tram Ho

Until now, many people still believe that macOS is more secure than Windows. While this is largely true, in recent years, the number of Mac computers infected with viruses and malware has started to increase.

More importantly, besides the Mac models running Intel chips, people also discovered a new type of malware (malware) designed specifically for Apple’s M1 chip, with many tweaks to be able to function on Macs using the M1 microprocessor.

Phát hiện mã độc đầu tiên trên máy Mac M1 - Ảnh 1.

According to a new report published by security researcher Patrick Wardle , a malware creator can easily customize and recompile available malware to run natively on the M1 chip.

The first malware to affect the M1 chip was an extension for the Safari browser called “GoSearch22”, originally created to work on Intel x86 chips. It is believed to be a variant of the “Pirrit” adware that appeared on the Mac before.

If you didn’t know, Pirrit is one of the oldest family of adware software on Mac and has been constantly being tuned to avoid detection. So it is only a matter of time before malware appears on a Mac.

Phát hiện mã độc đầu tiên trên máy Mac M1 - Ảnh 2.

GoSearch22 disguises itself as a legitimate extension for the Safari browser. It monitors and collects user data, then displays a large number of advertisements on the screen such as banners or pop-ups.

Some pop-ups link to other malicious websites that contain more adware. According to Wardle , GoSearch22 was registered with an Apple developer ID in November 2020, but was later revoked.

He added that the malware on the Mac M1 is still new and that anti-virus programs are harder to detect than the x86 version. In other words, this is just the beginning, and given the current situation, there may be more similar malware that affects Mac models running Apple’s M1 chip.

Share the news now

Source : Genk