New: Threat Exposure Validation Impact Report 2025
Learn More
Join our Summer Webinar Series on Threat Exposure Validation
Register Now
Come meet us at Black Hat USA 2025 | Booth 1640
Book a Meeting

macOS Targeted With The CloudMensis Multi-Staged Malware

August 3, 2022

The CloudMensis multi-staged malware consist of a downloader used to infect MacOS systems with a spyware component used to exfiltrate sensitive information. The malicious software is capable of listing running processes, files, and emails as well as log keystrokes, take screenshots, run shell commands, and download additional files. The malware also exploits a vulnerability (CVE-2020-9934) to bypass the TCC daemon on any version of macOS Catalina earlier than 10.15.6.