Trojan.MacOS.RealTimeSpy is the detection for variants of the Realtime-Spy software. While Realtime-Spy is a legitimately developed and distributed software, anti malware solutions will detect it as a threat. This goes for all applications designed to stealthily monitor Macs. Even if the developers are real companies with legitimate business operations, such applications pose a severe security threat if used by cybercriminals.
In the case of Realtime-Spy, there is no need for theories. A variant of the application has been used in attacks in the past. In late 2018, security experts identified a campaign trying to install a repurposed version of the Realtime-Spy binary in an attempt to compromise the systems of Exodus users. Exodus is a cryptocurrency wallet and management application. Users of the Exodus app were targeted with emails claiming to offer an update for the application. In fact those emails would lead to the installation of a version of Realtime-Spy. Realtime-Spy has the most common functionalities offered by surveillance software. This includes keystroke logging and other ways to get access to cryptocurrency wallet credentials. There was no proof and no real reason to suspect that the developers of Realtime-Spy had anything to do with the attack, but that doesn’t change the fact that surveillance software can be used by cybercriminals to do a lot of damage.
As mentioned above, Realtime-Spy has the capabilities that other similar applications offer:
- Typed keystroke recording.
- Clipboard capturing.
- Screenshot recording.
- Email reporting.
- Credentials logging.
- Chat recording.
It doesn’t take a cyber security expert to understand how such functionalities can lead to significant damage when used by criminals. Cryptocurrency owners make for the most logical targets, but even those that don’t dabble with crypto can stand to lose a lot. Identity theft can be devastating to anyone.
On the bright side, Realtime-Spy and most other surveillance software solutions aren’t undetectable. Using a good security solution for Mac and keeping it up to date will significantly reduce the risks associated with spyware. Anti malware software can stop surveillance software from being installed in the first place and it can also detect and remove such threats after they have been installed.