Apple Takes Step to Prevent Further Spread of 'Silver Sparrow' Malware on Macs

Over the weekend, we reported on the second known piece of malware compiled to run natively on M1 Macs. Given the name "Silver Sparrow," the malicious package is said to leverage the macOS Installer JavaScript API to execute suspicious commands. After observing the malware for over a week, however, security firm Red Canary did not observe any final payload, so the exact threat to users remains a mystery.

mac security privacy
Nonetheless, Apple has since informed MacRumors that it has revoked the certificates of the developer accounts used to sign the packages, preventing additional Macs from being infected. Apple also reiterated that Red Canary found no evidence to suggest the malware has delivered a malicious payload to Macs that have already been infected.

For software downloaded outside of the Mac App Store, Apple said it has "industry-leading" mechanisms in place to protect users by detecting malware and blocking it so it cannot run. Since February 2020, for example, Apple has required all Mac software distributed with a Developer ID outside of the Mac App Store to be submitted to Apple's notary service, an automated system that scans for malicious content and code-signing issues.

Malware targeting M1 Macs has simply been compiled to run natively on the Arm-based architecture of the M1 chip, now that Intel-based Macs are slowly being phased out. For more details about the "Silver Sparrow" malware, read our earlier coverage.

Top Rated Comments

Brian Y Avatar
12 months ago
This is going to end up the same way as all DRM - inconveniencing genuine users whilst bad guys find ways around it.

If Apple really had automated detection and scanning, how did it manage to infect so many machines?
Score: 15 Votes (Like | Disagree)
MacSince1985 Avatar
12 months ago
Red Canary vs. Silver Sparrow. It's time to call in reinforcement from Purple Owl and Green Chickadee!
Score: 13 Votes (Like | Disagree)
jlc1978 Avatar
12 months ago
More importantly, how do you detect it and remove it?
Score: 13 Votes (Like | Disagree)
Kazgarth Avatar
12 months ago
They should include something like Windows Defender to allow the user to scan his system files on demand, when in doubt.
Score: 11 Votes (Like | Disagree)
Populus Avatar
12 months ago
Something tells me that the issue, deep down, is not solved. Yeah, Apple has revoqued the certificate, so then what? Can this happen again? I’d say yes...
Score: 8 Votes (Like | Disagree)
PJWilkin Avatar
12 months ago

The police doesn't deal with these types of matters. It requires a higher authority.
The Vatican ? ?
Score: 7 Votes (Like | Disagree)

Related Stories

Mac App Store General Feature

Apple's Craig Federighi: Mac Not Meeting the Bar for Customer Protection

Wednesday May 19, 2021 12:41 pm PDT by
Apple software engineering chief Craig Federighi is testifying in the ongoing Apple v. Epic games trial this afternoon, providing details about iPhone security to convince the judge that any change to the App Store policies would be detrimental to iPhone users. Epic Games wants the judge to force Apple to allow multiple app stores on iOS, similar to how it works on Mac, which would allow...
opera m1 macs

Opera Browser Gains Native M1 Mac Support

Thursday April 1, 2021 1:00 am PDT by
The minimalist Opera browser designed for the Mac was today updated with native Apple silicon support for M1 Macs, introducing notable speed improvements. With this release, the Opera browser runs two times faster on M1 Macs compared to the previous generation of the browser for smoother and quicker browsing performance. Along with M1 Mac support, today's update lets users set keyboard...
docker for mac

Docker Desktop for Mac Updated With Apple Silicon Support

Thursday April 15, 2021 9:00 am PDT by
Docker today announced that it has launched a new version of Docker Desktop for Mac with Apple silicon support, allowing developers to use the Docker software on the M1 MacBook Pro, MacBook Air, and Mac mini. Prior to launching, the version of Docker Desktop for Mac with M1 compatibility has been available as a technical preview, and Docker says that testers have found the software to be...
why mac website

Apple Explains Why You Should Buy a Mac

Friday May 21, 2021 10:44 am PDT by
Apple today added a new "Why Mac" explainer page to its main Apple.com website, which, as the name suggests, pitches reasons why customers should choose to buy a Mac. The Mac is "easy to learn," powerful, and equipped with tons of apps and free software updates.Easy to learn. Astoundingly powerful. And designed to let you work, play, and create in ways you never imagined. It's the computer...
m1 mac mini screen

M1 Macs Targeted by Additional Malware, Exact Threat Remains a Mystery

Saturday February 20, 2021 12:10 pm PST by
The second known piece of malware that has been compiled to run natively on M1 Macs has been discovered by security firm Red Canary. Given the name "Silver Sparrow," the malicious package is said to leverage the macOS Installer JavaScript API to execute suspicious commands. After observing the malware for over a week, however, neither Red Canary nor its research partners observed a final...
macbook air m1 unboxing feature

First Malware Running Natively on M1 Chip Discovered

Wednesday February 17, 2021 2:33 pm PST by
Malware specifically tailored to run on Apple's M1 chip has been discovered, indicating that malware authors have begun adapting malicious software for Apple's new generation of Macs with Apple silicon. Mac security researcher Patrick Wardle has now published a report, cited by Wired, that explains in detail how malware has started to be adapted and recompiled to run natively on the M1 chip. ...
parallels windows 10 arm mac

Parallels 16.5 Can Virtualize ARM Windows Natively on M1 Macs With Up to 30% Faster Performance

Wednesday April 14, 2021 7:00 am PDT by
Parallels today announced the release of Parallels Desktop 16.5 for Mac with full support for M1 Macs, allowing for the Windows 10 ARM Insider Preview and ARM-based Linux distributions to be run in a virtual machine at native speeds on M1 Macs. Parallels says running a Windows 10 ARM Insider Preview virtual machine natively on an M1 Mac results in up to 30 percent better performance compared ...
apple transporter

Apple Transporter and Microsoft Remote Desktop Gain Native M1 Mac Support

Thursday April 15, 2021 3:18 am PDT by
Apple has updated its Transporter app for developers with native support for Apple silicon Macs, while Microsoft has done the same for its Remote Desktop app. The Transporter app lets developers drag and drop binaries for quick upload to App Store Connect and easily view details like progress, warnings, errors, and delivery history. The added support for Apple silicon means developers...

Popular Stories

iPhone 14 Mock pill and hole thumb

ProMotion Now Expected to Remain Exclusive to iPhone 14 Pro Models, Not Expand to Entire Lineup

Sunday January 16, 2022 8:56 am PST by
Continuing the tradition set with the iPhone 13 Pro, only the highest-end iPhone 14 models will feature Apple's ProMotion display technology, according to a respected display analyst. Ross Young, who on multiple occasions has detailed accurate information about Apple's future products, said in a tweet that ProMotion will not be expanded to the entire iPhone 14 lineup and will remain...
safari icon blue banner

Safari Bug Allows Websites to Track Your Recent Browsing Activity in Real Time [Updated]

Sunday January 16, 2022 3:37 pm PST by
A bug in WebKit's implementation of a JavaScript API called IndexedDB can reveal your recent browsing history and even your identity, according to a blog post shared on Friday by browser fingerprinting service FingerprintJS. In a nutshell, the bug allows any website that uses IndexedDB to access the names of IndexedDB databases generated by other websites during a user's browsing session....
ipad air 4 video

New iPad Air Rumored to Launch This Spring With A15 Chip, 5G, Center Stage Camera, and More

Saturday January 15, 2022 8:05 pm PST by
Apple is planning to release a fifth-generation iPad Air with similar features as the sixth-generation iPad mini, including an A15 Bionic chip, 12-megapixel Ultra Wide front camera with Center Stage support, 5G for cellular models, and Quad-LED True Tone flash, according to Japanese blog Mac Otakara. Citing reliables sources in China, the report claims that the new iPad Air could be...
Unlikely Products 2022 Feature

Six Rumored Apple Products You're Unlikely to See This Year

Saturday January 15, 2022 2:06 pm PST by
Much has been said about what consumers could see from Apple in 2022, but the company is also working on a handful of rumored products that aren't expected to be unveiled for at least another 12 months, and in some cases a lot longer. Of course, that's assuming they get released at all. Apple works on many potential products some of which ultimately never see the light of day. With that in...
AirPods Pro Gen 3 Mock Feature Red

AirPods Pro 2 Could Start a New Accessory Ecosystem

Friday January 14, 2022 2:34 am PST by
Apple's second-generation AirPods Pro could arrive alongside a new series of accessories, recent leaked images suggest. Alleged leaked photos of the next-generation AirPods Pro obtained by MacRumors showed a charging case with a metal loop on the side for attaching a strap. Apple has not used this design for any of its other AirPod models and it is unclear why it would be added in this...
netflix2

Netflix Again Raises Prices for All Plans, 4K Streaming Now $20 Per Month

Friday January 14, 2022 12:46 pm PST by
Netflix today updated the prices for its streaming plans, and all of its offerings are now more expensive. The Basic plan is now priced at $9.99 per month, the Standard plan is priced at $15.49 per month, and the Premium plan is priced at $19.99 per month. The Basic plan is $1 more expensive, up from $8.99 per month. This plan allows users to watch on just one screen at a time, and it limits ...
tesla carplay solution

Developer Showcases Apple CarPlay Workaround for Teslas

Monday January 17, 2022 7:24 am PST by
A Tesla Model 3 owner has resorted to a workaround to implement Apple CarPlay in his vehicle, amid no sign of official support from Tesla (via Tesla North). Apple CarPlay and Apple Music support are among the most-requested Tesla features, but with no indication that Tesla is willing to implement Apple CarPlay in its vehicles, Polish developer Michał Gapiński took matters into his own...
top stories 20220115

Top Stories: iPhone 14 Pro Rumors, iCloud Private Relay Controversy, iOS 15.2.1 Released, and More

Saturday January 15, 2022 6:00 am PST by
Hole-punch? Pill? Hole-punch and pill? Rumors about what the front camera system on the iPhone 14 Pro will look like are evolving rapidly, and it now appears we might be getting a novel but potentially controversial design later this year. Other major stories this week included some confusion and controversy about iCloud Private Relay being disabled for some T-Mobile customers, increasing...