Skip to main content

This devious scam app proves that Macs aren’t bulletproof

Pirated software can cause all kinds of headaches, but Mac users might have thought themselves largely immune thanks to Apple’s reputation for solid security. Yet, that complacency could prove quite problematic, as a new strain of nearly undetectable malware has shown.

According to research from security firm Jamf Threat Labs, pirated versions of Apple’s Final Cut Pro moviemaking app have been modified to contain cryptojacking payloads. When installed, the app starts using your Mac to mine the Monero cryptocurrency behind your back, potentially slowing down your machine as system resources are illegitimately gobbled up.

A close-up of a MacBook illuminated under neon lights.
Image used with permission by copyright holder

Worse, Jamf Threat Labs says the malware remains almost entirely undetected by both antivirus software and Apple’s own security systems. That makes it a major pest to detect and remove.

Recommended Videos

The malicious software uses the Invisible Internet Project (i2p) network to download additional components in an anonymous way that is very difficult to detect. It also disguises itself as system processes linked to macOS’ Spotlight feature, further helping it to avoid raising eyebrows.

Please enable Javascript to view this content

The malware is primarily distributed through torrents on The Pirate Bay shared by user “wtfisthat34698409672.” This user has uploaded similarly cracked apps, including Adobe Photoshop and Logic Pro X, that also contain cryptojacking malware.

Still dangerous today

A digital encrypted lock with data multilayers.
Getty Images

In macOS Ventura, Apple introduced a few security features that hamper the malware, but they do not stop it completely. For instance, there are more code-signing checks to ensure apps have not been modified. In the case of this malware, its authors kept much of the original Final Cut Pro code in place to make it seem like the real deal, but it was not enough to evade Ventura’s checks.

Ironically, however, Ventura only disables the legitimate part of the malware bundle — that is, the Final Cut Pro portion — while leaving the cryptojacking elements untouched. The good news is that the malware is not able to find a way past Apple’s Gatekeeper security protections without a user manually disabling them, which limits some of the damage it can cause.

It just goes to show the dangers involved in downloading and installing pirated software. Instead, it’s much better to pay for the genuine article and avoid infecting your computer. Alternatively, there are plenty of great free video-editing apps available, meaning you don’t need to pay to create movie masterpieces on your Mac.

Alex Blake
Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…
I found an app that fixes macOS Sequoia’s annoying pop-ups
macOS Sequoia being introduced by Apple's Craig Federighi at the Worldwide Developers Conference (WWDC) 2024.

Years ago, back when I used Windows Vista, I got so annoyed by the constant User Account Control (UAC) pop-ups asking for permission seemingly every time I did anything that I downloaded an app that could silence them for good. Perhaps not the most sensible thing to do from a security perspective -- OK, definitely not the most sensible thing to do -- but I was a desperate man. These days, I’m getting similar vibes from macOS Sequoia.

That’s because Apple’s latest operating system will nag you about permissions on a monthly basis for anything that records your screen. Granted, it’s not as frequent as what I’d get in Windows Vista -- and these prompts were actually weekly in the macOS Sequoia beta, which caused such a blowback from users that Apple changed the frequency -- but it still feels like it’s going to be a real pain for me and a lot of users. Sure, macOS Sequoia hasn’t actually been out long enough for me to be bugged by these alerts every month yet, but I don’t want to hang around until I start pulling my hair out. I need to take action now.

Read more
Two of the best Apple Intelligence features on Mac still need work
Apple Intelligence in macOS Sequoia being used to summarize a selection of text.

Recently, Apple launched the macOS Sequoia 15.1 beta, and with it came a bunch of new Apple Intelligence features. Not everything, mind you – many of the flagship tools, like the Image Playground and Siri’s more powerful capabilities, might not debut until next year. But there’s enough Apple Intelligence here to get a feel for the new system.

Ever since the beta came out, there have been two areas of Apple Intelligence I’ve wanted to focus my attention on: Mail summaries and Apple’s suite of Writing Tools. These are some of the most fleshed-out Apple Intelligence elements that exist in macOS Sequoia right now, and also potentially two of the most useful, so it made sense to channel my efforts toward them.

Read more
macOS Sequoia fixes a problem that’s bugged me for years
The iPhone Mirroring feature from macOS Sequoia being demonstrated at the Worldwide Developers Conference (WWDC) 2024.

Sometimes, people think it’s the big, headline features -- like Apple Intelligence -- that make an operating system great. But there’s one new feature in macOS Sequoia that shows the opposite is true -- that a collection of less glamorous, yet meaningful changes can have a much bigger impact.

I’m talking about Apple’s new iPhone Mirroring feature. Or rather, one particular element of iPhone Mirroring: its new drag-and-drop ability. Even in the few short days it’s been available, it’s managed to improve my daily workflow and fix an issue that’s been bugging me for years.

Read more