Browser modifications on MacOS are hampered by Banshee Stealer trojan.
Banshee Stealer targets web browser extensions on macOS
Security researchers have discovered new malware for macOS that can be used to attack more than 100 browser extensions installed on the Mac target. Apple makes every effort to make macOS, and other operating systems, as secure as possible. Browser extensions are a weakness, even though Apple does its best to protect us against threats involving third party malware. Elastic Security Labs explained on Thursday that a malware called Banshee Stealer does not directly attack macOS, but rather third party software installed on it. Hacker News reports. This includes Chrome, Firefox Brave, Edge Vivaldi Opera and other browsers. It also targets cryptocurrency wallets, and over 100 browser extension installed on said browsers. Elastic Security Labs called it a “very dangerous and versatile threat”. The malware’s main task is to steal data. It can also harvest information from the Keychain, including passwords. The malware can also pull data from the desktop and document folders. It has the ability to evade detection. It can detect whether it’s running within a virtual environment and uses an API in order to avoid infecting Macs if Russian is the primary languages. During installation, the malware uses a script to display to the user a fake password prompt in an attempt to escalate its privilege. Banshee Stealer highlights the increasing occurrence of macOS-specific malware, the researchers said. It is not known how widely the malware has been used. However, it appears that its creator views it as a high quality tool for cybercriminals. On one forum screenshot, the seller of the tool had set a price of $3,000 per month. MacOS users don’t have any specific instructions on how to combat this particular attack vector other than a good computing hygiene. Many users will benefit from ensuring that downloads are only coming from legitimate sources, being cautious about unexpected email attachments and being more thoughtful with installations.