Here are the steps that you need to perform to get hit:
1. Go to a website that distributes the Trojan.
2. Download a .zip file from the website.
3. Extract the .zip file which contains an app that looks like an installer.
4. Double-click the app.
5. Either have your Mac set up so that it allows launching any app (stupid) or give the app explicitly permission to launch.
6. (New step) Ignore a warning from Apple that this app is dangerous.
7. Enter your phone number and some other number.
You'd have to be _quite_ stupid to be caught by this.
Next I'll send emails to all Mac users in the world "send me your money! " and everyone who sends me money will blame Apple for it.
1. Go to a website that distributes the Trojan.
2. Download a .zip file from the website.
3. Extract the .zip file which contains an app that looks like an installer.
4. Double-click the app.
5. Either have your Mac set up so that it allows launching any app (stupid) or give the app explicitly permission to launch.
6. (New step) Ignore a warning from Apple that this app is dangerous.
7. Enter your phone number and some other number.
You'd have to be _quite_ stupid to be caught by this.
Next I'll send emails to all Mac users in the world "send me your money! " and everyone who sends me money will blame Apple for it.