Yesterday I updated Safari to version 16.6 (with Monterey installed as the OS, not Ventura). Later that day BitDefender notified me that a number of files had to be quarantined. They were all listed as trojan horses. Furthermore, ever single file that was quarantined was in one of two folders:
- ~/Library/Containers/com.apple.safari/Data/Library/Caches/com.apple.safari/WebkitCache/Version 16/blobs
- ~/Library/Containers/com.apple.safari/Data/Library/Caches/com.apple.safari/WebkitCache/Version 16/Records
In each case the threat is JS:Trojan.Cryxos.12423.
Here's the thing: I've been running BitDefender for a long time and it has never found anything in the past. Maybe it's just a coincidence that it happened to find issue after I installed Safari version 16.6. And maybe it's a further coincidence that the questionable files are all in a directory devoted to Safari.
However, considering all these pieces of information, I can't help but wonder if there is a connection and I'm curious if anyone has any thoughts.
For context, I'm using a 2020 MacBook Air M1 (I also updated to Ventura yesterday).