“XcodeSpy” is a malicious Xcode project that installs a custom variant of the EggShell backdoor on a developer’s Mac computer. Xcode is Apple’s integrated development environment (IDE) for MacOS, used to develop software for iOS, iOS, iPadOS, watchOS, and tvOS. Attackers use a tainted version of a legitimate, open-source project available on GitHub called TabBarInteraction that’s used by developers to animate iOS tab bars based on user interaction.
Source: https://thehackernews.com/2021/03/hackers-infecting-apple-app-developers.html