Security researchers warn of a new Google malware scam that could infect Macs

Security researchers warn of a new Google malware scam that could infect Macs

So-called 'malvertising' is the exact reason why Apple wants you to use its App Store.

Credit: Dreamstime

If there's one thing that computer users can always count on, it's that hackers will always try to find ways to intrude upon your devices. And according to a report by security specialists Spamhaus and (via Ars Technica), hackers have become more aggressive with attempts to spread malware through Google searches for Mac software.

Essentially, hackers are running ads that appear when using Google to search for software. The Google ads appear at the top of the search results and seem to provide what the user is looking for.

Then the user clicks the ad and goes to a spoofed software download page, and when the user clicks to download, malware is saved to the computer. The most common malware is known as XLoader, which is available for both Windows and macOS. XLoader has previously been used to record keystrokes and steal personal data on infected machines.

Spamhaus has seen an increase in malvertisting over the past few weeks with several popular apps such as Mozilla Thunderbird and Microsoft Teams. In the report, states that there is a great deal of demand for the nefarious ads, so they will likely become even more commonplace.

In its own investigation using a Mac, Ars Technica easily found malvertising in simple Google searches for common software downloads such as visual studio download and Tor download.

Google is aware of the practice and is working to fix the issue. However, it is still extremely widespread as noted by a statement sent to Ars Technica: We are aware of the recent uptick in fraudulent ad activity. Addressing it is a critical priority and we are working to resolve these incidents as quickly as possible.

How to avoid malware

Even if Google fixes the problem in the immediate future, hackers will find a new way to spread malware to your Mac. That means it's up to users to protect themselves.

The safest way to get Mac software is through Apple's App Store, it's what the company says is why the App Store exists in the first place. The truth is it's all about the money, but the two things can both be true.

Apple verifies that each app in its store is safe to download. Most of the popular apps from large software developers are available, and there's a great selection from indy devs, too.

If the app you need isn't in the App Store (or you want developers to get as much of the paid fee as possible and don't want Apple to get its cut), then you have to turn to the internet. Your best option when downloading software is to go directly to the developer's website. They should offer secure methods to acquire the software you need.

Try to avoid websites that specialise in software downloads as much as possible because hackers constantly target these sites. If you have no alternatives, you can use a site such as VirusTotal to check files and URLs for malware.

Follow Us

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags malwareGoogleApple



Join key decision-makers within Environmental, Social, and Governance (ESG) that have the power to affect real change and drive sustainable practices. SustainTech will bridge the gap between ambition and tangible action, promoting strategies that attendees can use in their day-to-day operations within their business.

EDGE 2023

EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.


ARN has celebrated gender diversity and recognised female excellence across the Australian tech channel since first launching WIICTA in 2012, acknowledging the achievements of a talented group of female front runners who have become influential figures across the local industry.

ARN Innovation Awards 2023

Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.

Show Comments