A top Apple exec has said that Mac malware has now exceeded Apple's level of tolerance and framed security as the reason for keeping iPhones locked to the App Store.
XcodeSpy is a malicious Xcode project that installs a custom variant of the EggShell backdoor on the developer’s macOS computer along with a persistence mechanism.
Dubbed "Cerberus," the malware is able to access the smartphone's display and exploit the ability to capture screenshots of OTPs generated by the Google Authenticator app.
Uncovered by researchers at security company Wandera, the 17 applications cover a range of categories including productivity, platform utilities, and travel.