Microsoft has detected a more advanced version of the XCSSET Ziyanlı software developed for MacOS. The new version of this Ziyanlı software, which has already been brought to the agenda; Advanced hiding techniques attract attention with increasing persistence and different contamination devices.

Compared to the information shared by Microsoft, this sophisticated malware, which is spread through Xcode projects, is aiming at developers and users. Apple’s official development environment is used to develop applications for XCode, MacOS, iOS, iPados, Watchos and TVOS.

MALY SOFTWARE IS IN TABLE FROM XCODE PROJECTS

XCSSET has functions to play system information and documents, to seize digital wallet data and to leak information from the application of official notes. The new version uses a much more complex structure in concealment.

The new XCSSET version uses two new permanence techniques: “ZSHRC” and “Dock”. In the first, it creates a document called ~/.zshr_aliases and makes this load effective in every new shell session. In the second, it creates a flat Launchpad application for the Dock administration and replaces the real application and runs Ziyanlı software without noticing the user.

Microsoft said that the new version of XCSSET is now only detected in very few people, but developers and users should be careful. Users were recommended to carefully examine the XCode projects downloaded from warehouses, and to upload applications only from solid sources.