A new version of the Banshee malware has been avoiding detection on macOS systems for the past two months, adopting encryption methods from Apple’s XProtect. Banshee, first introduced in 2024, is an information stealer that masquerades as a legitimate service while exfiltrating data, including users’ passwords and cryptocurrency wallet details. The malware is primarily distributed via deceptive GitHub repositories, with reports of ongoing distribution despite the source code being leaked.
New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload
Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs
