New warning for millions of Apple users issued.Anadolu via Getty ImagesUpdate, Jan. 11, 2025: This story, originally published Jan. 10, now includes comments from a number of security experts about the new Banshee Stealer threat to Apple macOS users.Although Windows users are historically more likely to be targeted by cyber attackers, and when it comes to Apple most of the security-related stories we read tend to involve the iPhone one way or another, new research suggests that 100 million macOS users are firmly in the crosshairs as cybercriminals look to exploit the growing popularity of the operating system. Heres what you need to know about the newly discovered Banshee Stealer threat variant.What 100 Million Apple Users Need To Know About Banshee StealerA new variant of the macOS Banshee Stealer threat, capable of hacking browser credentials, cryptocurrency wallets and other sensitive data, has been monitored by security researchers since late last year. Now those threat intelligence experts at Check Point Research have published a new report warning 100 million users of the real-and-present dangers this nasty hack attack campaign poses.Im a relatively recent convert to the world of macOS, having bought into the MacBook Pro a couple of years ago in no small part due to the security protections that the Apple ecosystem brings. Im not blind to the fact that this doesnt mean anyone using macOS is somehow immune to attack, that simply isnt the case. The Banshee Stealer is proof enough if anyone were doubtful that such stealer-as-a-service threats apply to Apple users as much as anyone else.For $3,000, Check Point researchers said, threat actors could purchase this malware to target macOS users, with the criminal developers having stolen a string encryption algorithm from Apples own XProtect antivirus engine, which replaced the plain text strings used in the original version. This likely made it easier for Banshee to avoid detection. However, when the source code to the malware was leaked on the dark web late in 2024, the service was shut down. Check Point said at the time it would lead to new variants, developed by other threat actors, emerging; it has been proved right.MORE FOR YOUSecurity Experts Speak Out About The Latest Banshee Apple macOS AttacksThe return of Banshee Stealer malware, with its improved antivirus detection capabilities, represents a significant risk for organizations using macOS devices, according to Eric Schwake, director of cybersecurity strategy at Salt Security. Despite the common belief that Macs offer greater security, Schwake said, this incident emphasizes that organizations must adopt strong security measures across all devices, independent of their operating systems. Only by adopting a proactive stance on macOS security can organizations lessen the risk from evolving threats like Banshee Stealer and safeguard their essential data and resources, Schwake said. Such a proactive stance entails implementing endpoint security solutions, enforcing strict password policies, educating staff about phishing and malware risks, and ensuring all software is regularly updated with the latest security patches, Schwake concluded.Meanwhile, Jaron Bradley, director of the Jamf threat labs, warned that its own threat intelligence had observed a significant rise in credential stealer campaigns gaining momentum across 2023. These campaigns have proven highly successful, even on the macOS platform, Bradley said, the success of these stealers is primarily driven by social engineering, where attackers convince users to execute the malware themselves. The lesson to be learned is as obvious as it is old: no matter how robust the operating systems security measures are, attackers can often bypass them by presenting users with a convincing reason to act. It also underscores that while Apples XProtect rules are effective at detecting known malware, Bradley said, they are closely monitored by malware authors, allowing them to adapt and evade detection in future iterations using creative methods.Apple macOS Users Must Pay AttentionOr Suffer The Security ConsequencesWhile conceding that Apple does a good job at including robust security protections for macOS users, such as Gatekeeper, XProtect, and sandboxing, the Check Point researchers have warned that the rebirth and rise of Banshee Stealer serves as a reminder that no operating system is immune to threats. The macOS users who ignore this warning do so at their own peril.Thats because Banshee operates undetected and blends seamlessly with perfectly normal system processes, yet all the time, it is stealing browser credentials, cryptocurrency wallets, user passwords, and sensitive file data. Even seasoned IT professionals struggle to identify its presence, the Check Point report warned, Banshee stealer isnt just another piece of malwareits a critical warning for users to reassess their security assumptions and take proactive measures to safeguard their data.The latest Banshee variant targets web browsers, including Chrome, Brave, Edge, and Vivaldi, along with browser extensions for cryptocurrency wallets. It also exploits a Two-Factor Authentication extension to capture sensitive credentials, the report said, adding that it utilizes convincing pop-ups designed to look like legitimate system prompts to trick users into entering their macOS passwords.This new Banshee Stealer variant exposes a critical gap in Mac security, Ms. Ngoc Bui, a cybersecurity expert at Menlo Security, said, While companies are increasingly adopting Apple ecosystems, the security tools haven't kept pace. We need a multi-layered approach to security, including more trained hunters on Mac environments.I have reached out to Apple for a statement.