 |
| Source: Surfshark Antivirus. PowerShell scripts dominate Windows malware, whereas viruses are the leading cause of malware for macOS. |
Malware remains one of the main ways criminals steal money or data from people and companies. So far in 2025, Surfshark Antivirus has recorded 479K malware cases. Of these, 87% (419K) were on Windows, and the remaining 13% (60K) were on macOS.
- Malware can cause extensive harm to internet users. Personal data breaches alone caused users US$1.5 B in losses in 2024.
- Attackers are focusing their efforts on Windows since it holds the majority market share and therefore the biggest catch.
Windows remains the most popular operating system (OS) worldwide, although its market share declined from 77% in 2020 to 71% in 2025. The second most popular OS is macOS, with a stable global market share of around 15%. For example, the OS breakdown in South Korea is Windows 85%, and macOS 6%.
- PowerShell script malware is among the most common (22%) Windows infections, Surfshark said, giving hackers full control of a computer and its data;
“PowerShell scripts are among the most common Windows malware and the most dangerous for users. They can give hackers full control of your computer and data. These scripts blend in, appearing like legitimate software operations.
"For example, you might be browsing your favourite news site when a popup appears, saying: ‘Your system needs an urgent security update — click here.’ The pop-up shows the Windows logo and looks official, so you select ‘Update Now.’ Yet the ‘update’ actually uses a PowerShell script to install malware and connect to a hacker’s server. That’s how all your private data, including passwords and financial information, can become accessible to hackers,” explained cybersecurity expert Nedas Kazlauskas.
- Mac users are most likely to catch viruses (28%) and Trojans (26%)
Viruses and Trojans exploit vulnerabilities in macOS. Most often, they are installed after downloading apps from outside the official App Store. Mac viruses and Trojans can also include browser-hijacking programs that attempt to steal users’ browser data, such as saved passwords in password managers.
Additionally, Surfshark’s expert draws macOS users’ attention to the “Other” malware category, which accounts for 16% of attack cases. “Hackers are experimenting extensively with macOS. They are searching for vulnerabilities and trying to install malicious programs. What makes it tricky is that it’s not really clear what their final goal is,” said Kazlauskas.
Surfshark suggests:
- Have a working antivirus program. Regular virus scans are vital for detecting and eliminating harmful code;
- Always update your operating system and apps. Unpatched devices are the easiest target for malware, but be cautious of pop-up windows that tell you to update or download software;
- Don’t open suspicious emails, attachments, or links. In most cases, phishing attempts lead to device infections;
- Beware of suspicious links, particularly shortened ones circulating on social media. Usually, those lead to phishing or malware websites where personal data could be at much higher risk;
- Use public Wi-Fi carefully. Avoid accessing sensitive accounts or data on unsecured networks.