Never-before-seen Mac malware, dubbed OSX/CrescentCore, has been discovered in the wild. The trojan, spotted on various websites masquerading as an Adobe Flash Player installer, drops malicious applications and browser extensions on victims systems when downloaded. The malware is signed using multiple Apple Developer IDs registered to someone named Sanela Lovic; known identifiers so far include 5UA7HW48Y7 and D4AYX8GHJS. It is only the latest Mac malware discovered to be targeting Mac systems.
Source: https://threatpost.com/mac-malware-pushed-via-google-search-results-masquerades-as-flash-installer/146178/