While you might suspect your MacOS computer has been infected with malware, it can be difficult to know for sure. One way to spot malicious programs is to look for suspicious behavior — like programs listening in on our keyboard input or launching themselves every time we boot. Thanks to free MacOS tools called ReiKey and KnockKnock, we can detect suspicious programs to discover keyloggers and other persistent malware lurking on our system.
There are many ways a keylogger or malware can end up on your MacOS system. It can happen from an infected file, a hacker with a USB Rubber Ducky, or, more likely, a jealous spouse or overprotective family member trying to monitor your actions. Ensuring your communications aren't being intercepted by someone is a concern for anyone who values their privacy, but how much malware is really out there for MacOS?
Malware for MacOS
Patrick Wardle, an ex-NSA hacker who creates MacOS security tools, studies malware written for Apple devices. On his website https://objective-see.com/, Patrick hosts live samples of MacOS malware for researchers to study, and the variety of malware discovered in the wild is shocking. A simple search for keyloggers finds five separate kinds of keylogger malware for MacOS devices.
That presents a challenge: how do we defend against all of these different kinds of malware if even keyloggers come in five different flavors? Wardle's answer is to search for the behavior of malicious programs like keyloggers rather than just searching for programs themselves.
For example, a keylogger taps into the st ..