Referred to as APT28 (alias Fancy Bear or Sofacy), the threat actors allegedly have close ties to GRU, Russia’s Main Intelligence Agency. According to preliminary verdicts of IT experts who have looked into this issue, Xagent Mac is managed by state-sponsored criminals from Russia. The hacker group behind it is believed to be high-profile. It’s not until February 2017 that researchers discovered its Mac edition. The original version of this stealth infection targeted devices running Windows, Linux, Android and iOS platforms.
The Xagent Mac malware demonstrates how rapidly cyber espionage is evolving. Get a full profile on the Xagent Mac virus, including the infection vectors and its impact, and use cleanup techniques to remove this malware from Mac OS X.