Apple Accidentally Allows Malware in Its App Store

Apple is well-known for its strict rules designed to prevent malicious software from appearing in its app stores. Last year, the tech giant introduced a new software notarization system, requiring every app or update to be signed by the developer and verified by Apple. Apps that fail this check are blocked on macOS, even if they are distributed outside the Mac App Store.

However, even Apple is not immune to mistakes. Security experts Patrick Wardle and Peter Dantini discovered that the company accidentally allowed the Shlayer malware to run on macOS. The malicious software was disguised as an Adobe Flash Player update and successfully passed the required verification. According to Wardle, a Mac security specialist, this is the first time he has encountered such a situation.

Shlayer is a well-known piece of malware that Kaspersky Lab called the most widespread threat to Macs in 2019. Shlayer is adware capable of intercepting encrypted internet traffic and replacing search results with fraudulent ads.

After the researchers informed Apple about the issue, the company revoked the approval, disabled the developer account responsible for the malicious plugin, and revoked all certificates associated with the malware. Interestingly, shortly after this, the attackers returned with a new version of the malware designed to bypass macOS security measures, but their attempt was unsuccessful.