XCSSET has been retooled to add support for Apple’s new M1 chips and expand its features to steal confidential information from cryptocurrency apps. The malware repackages payload modules to imitate legitimate Mac apps, which are ultimately responsible for infecting local Xcode projects and injecting the main payload to execute when the compromised project builds. X CSSET modules come with the capabilities to steal credentials, capture screenshots, inject malicious JavaScript into websites, plunder user data from different apps, and encrypt files for a ransom.
Source: https://thehackernews.com/2021/04/malware-spreads-via-xcode-projects-now.html