Securepdf viewer.app

SecurePDF Viewer.app is a malicious software (malware) that has been found to exploit and potentially damage computer systems, particularly those running on macOS 12.6 (Monterey) or later versions. It infiltrates the system through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside, it can perform harmful activities such as stealing personal information, disrupting operations, or holding data hostage for ransom. The malware comes with the bundle identifier com.softwaredev.swift-ui-test, indicating its deceptive appearance as a legitimate application. The SecurePDF Viewer.app was initially distributed under the name "InternalPDF Viewer". However, in June, researchers identified a variant of this malware named SecurePDF Viewer.app. This variant was signed and notarized by Apple, providing it with an additional layer of perceived legitimacy. The developer associated with the application is "BBQ BAZAAR PRIVATE LIMITED (7L2UQTVP6F)". Apple has since revoked the notarization, acknowledging the malicious nature of the app. Our research further suggests that the SecurePDF Viewer.app might be a subsequent stage of another malware known as ObjCShellz. This indicates a possible evolution or advancement in the malicious software's capabilities and tactics. Users are advised to exercise caution when downloading applications and to regularly update their security software to protect against such threats.