If you’re a Mac user, you may know about Shlayer malware targeting Mac. This malware first gained attention in early 2018 and has since become a significant threat to macOS users.
The malware primarily installs malicious adware on systems, spamming them with excessive popups that generate ad revenue for its controllers. According to Kaspersky Lab, Shlayer malware targeting Mac devices now impacts one in ten macOS systems, making it the most widespread malware threat for Apple computers.
Shlayer infects target machines through various methods. Researchers uncovered over 700 poisoned domains hosting the code. These domains link to legitimate websites, including YouTube and Wikipedia articles.
Hackers primarily distribute the malware via fake Flash Player updates. Thousands of websites host these fake updates, which prompt users to install them. Illegal streaming sites for sports and television shows often display ads claiming a Flash update is necessary to view content. These misleading ads further spread the malware.
Anton Ivanov, a security researcher at Kaspersky Lab, explained:
“The macOS platform is a good source of revenue for cybercriminals, who constantly find new ways to deceive users and use social engineering techniques to spread their malware. This case demonstrates that such threats can appear even on legitimate sites.”
Many people believe macOS systems are less prone to malware, but Shlayer malware targeting Mac systems proves otherwise. This threat highlights the importance of staying vigilant and securing all platforms against potential cyberattacks.