Apple Takes Step to Prevent Further Spread of 'Silver Sparrow' Malware on Macs - MacRumors
Skip to Content

Apple Takes Step to Prevent Further Spread of 'Silver Sparrow' Malware on Macs

by

Over the weekend, we reported on the second known piece of malware compiled to run natively on M1 Macs. Given the name "Silver Sparrow," the malicious package is said to leverage the macOS Installer JavaScript API to execute suspicious commands. After observing the malware for over a week, however, security firm Red Canary did not observe any final payload, so the exact threat to users remains a mystery.

mac security privacy
Nonetheless, Apple has since informed MacRumors that it has revoked the certificates of the developer accounts used to sign the packages, preventing additional Macs from being infected. Apple also reiterated that Red Canary found no evidence to suggest the malware has delivered a malicious payload to Macs that have already been infected.

For software downloaded outside of the Mac App Store, Apple said it has "industry-leading" mechanisms in place to protect users by detecting malware and blocking it so it cannot run. Since February 2020, for example, Apple has required all Mac software distributed with a Developer ID outside of the Mac App Store to be submitted to Apple's notary service, an automated system that scans for malicious content and code-signing issues.

Malware targeting M1 Macs has simply been compiled to run natively on the Arm-based architecture of the M1 chip, now that Intel-based Macs are slowly being phased out. For more details about the "Silver Sparrow" malware, read our earlier coverage.

Tag: macOS Security

Popular Stories

M5 Vision Pro Thumb 2

Apple Has Given Up on the Vision Pro After M5 Refresh Flop

Wednesday April 29, 2026 11:31 am PDT by
Apple has all but given up on the Vision Pro after the M5 model failed to revitalize interest in the device, MacRumors has learned. Apple updated the Vision Pro with a faster M5 chip and a more comfortable band in October 2025, but there were no other hardware changes, and consumers still weren't interested. The Vision Pro has been criticized for its high price tag and its uncomfortable...
Read Full Article478 comments
app store monthly sub commitment

Apple Introduces App Store Monthly Subscriptions With 12-Month Commitment

Monday April 27, 2026 12:52 pm PDT by
Apple today announced the launch of a new subscription option for App Store developers: monthly subscriptions with a 12-month commitment. The new option allows developers to offer subscribers discounted pricing typically associated with an annual subscription but paid on a monthly basis to keep payments more affordable. This new payment option allows you to offer subscribers more affordable...
Read Full Article145 comments
Four iPhone 18 Pro Colors Mock Feature

iPhone 18 Pro to Launch in September With These 10 New Features

Tuesday April 28, 2026 9:35 am PDT by
While the iPhone 18 Pro and iPhone 18 Pro Max are not launching until September, there are already plenty of rumors about the devices. It was initially reported that the iPhone 18 Pro models would have fully under-screen Face ID, with only a front camera visible in the top-left corner of the screen. However, the latest rumors indicate that only one Face ID component will be moved under the...
Read Full Article

Top Rated Comments

B
Brian Y
68 months ago
This is going to end up the same way as all DRM - inconveniencing genuine users whilst bad guys find ways around it.

If Apple really had automated detection and scanning, how did it manage to infect so many machines?
Score: 15 Votes (Like | Disagree)
MacSince1985 Avatar
MacSince1985
68 months ago
Red Canary vs. Silver Sparrow. It's time to call in reinforcement from Purple Owl and Green Chickadee!
Score: 13 Votes (Like | Disagree)
jlc1978 Avatar
jlc1978
68 months ago
More importantly, how do you detect it and remove it?
Score: 13 Votes (Like | Disagree)
K
Kazgarth
68 months ago
They should include something like Windows Defender to allow the user to scan his system files on demand, when in doubt.
Score: 11 Votes (Like | Disagree)
Populus Avatar
Populus
68 months ago
Something tells me that the issue, deep down, is not solved. Yeah, Apple has revoqued the certificate, so then what? Can this happen again? I’d say yes...
Score: 8 Votes (Like | Disagree)
P
PJWilkin
68 months ago

The police doesn't deal with these types of matters. It requires a higher authority.
The Vatican ? 😁
Score: 7 Votes (Like | Disagree)
Read All Comments