Malware is disguised as a legitimate Xcode open source project called TabBarInteraction. XcodeSpy installs a variant of the EggShell backdoor on an Apple developer’s Mac system. The backdoor is designed to spy on the developer and has features for recording the victim’s camera, microphone, and keyboard activity. The malware is the latest example of attackers targeting the software supply chain and trusted technology partners to try and get at their customers, security vendor SentinelOne says. The security vendor says so far it has not been able to find other instances of doctored Xcode projects.”]