Mac users are facing a new security issue: ‘Cuckoo’ malware. This recently discovered malware is capable of performing a number of malicious actions such as taking desktop screenshotsAccording to a report by Kandji, a company specializing in Apple device security.

According to Kandji’s report, the Cuckoo was initially It was discovered bundled with a Spotify music download application known as “DumpMedia Spotify Music”. This application aims to provide users with the ability to rip music from Spotify, allowing them to directly download audio files in MP3 format.

Cuckoo is the latest malware discovered on Mac

Further investigation revealed that Cuckoo was distributed via websites along with other third-party music downloading applications and backup software for iPhone/Android. However Kandji’s report focused on the impact on DumpMedia Spotify Music.

When you download most secure Mac apps from websites outside of Apple’s official App Store, you typically drag them from the .DMG installation file to the Applications folder on your computer. However DumpMedia Spotify Music, they tell you to right click on the app and select “Open”. This can be dangerous because can allow malware to be installed on your Mac without you knowing.

Afterwards, Malware begins collecting information from the computer Where is it installed? However Mac user downloading the app will not noticeBecause according to Kandji’s report, the DumpMedia Spotify Music app is installed and opened to hide the malware.

What kind of data does Mac Cuckoo malware steal?

According to Kandji, The data Cuckoo collects is:

• Mac hardware details.
• Information about installed applications.
• Processes running on the computer.
• Apple Notes data.
• Messages from messaging apps like Discord and Telegram.
• Cookies and Safari web browsing history.
• Data stored in iCloud Keychain.
• Real-time screenshots.

Which Macs does this malware affect?

Malware can target from older Intel-based Macs to newer Silicon Macs (M1, M2, M3, etc.).

Until now, It is unknown whether Apple has any security updates to combat Cuckoo. In fact, Kandji believes that there are other websites and applications that may contain the undiscovered Cuckoo malware.

And the main recommendation for Mac users: Be careful when downloading apps from unknown third-party developers.