Beware: Two New Mac Malware Threats Emerge, One Set for Fix This Week

Two New Mac Malware Threats Emerge

Parallels Vulnerability Exploit

A new vulnerability has been discovered in Parallels, a popular virtual machine software for macOS, which could allow attackers to gain root access. This exploit affects Intel Macs running Parallels and requires physical access to the machine. Security researcher Mickey Jin revealed this issue after attempting to get Parallels to address it for seven months. Parallels has acknowledged the vulnerability and plans to release a fix with updates Parallels Desktop 20.2.2 and 19.4.2 within the week.

FrigidStealer Malware

Separately, a new malware named FrigidStealer has emerged, which can be remotely exploited to steal passwords. This attack involves tricking users into clicking on a malicious link in an email, which redirects them to a fake browser update page. Following the instructions on this page bypasses macOS’s Gatekeeper security feature, allowing the malware to install. Users are advised to remain vigilant and avoid clicking on unexpected links or installing software from untrusted sources to protect themselves from these threats.