NightOwl was supposed to make Macs work in dark mode. After a recent update, one developer discovered it was siphoning users’ data through a botnet.
Interesting stuff, but it didn't become clear to me what user data was being transferred? Was it only related to NightOwl, or did it perhaps stole other data like browser history for example? And I suppose you could block this behavior via the firewall. You should always only allow apps to access the internet if they need it in order to function. And no, auto update is not a good reason.
