Info Stealer

Banshee Stealer

First seen: 2024-07 • Status: active

Currently Active Threat

Banshee cleverly uses Apple's own security code to hide from antivirus on Mac computers.

Overview

Banshee is a macOS stealer that uses Apple's XProtect encryption algorithm to evade detection.

Also Known As

Banshee

How It Spreads

  • Fake Mac apps
  • Phishing

What It Does

  • macOS credential theft
  • XProtect-based evasion

Is your business exposed?

Target Platforms

macOS

Detection Tips

  • Monitor for suspicious macOS behavior

MITRE ATT&CK Techniques

T1555, T1027

If You're Infected

  1. 1.

    Reset macOS credentials

Related Malware

Atomic Stealer

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices