It is true that macOS is a safe system and nobody can say that Apple does not put all the necessary measures so that malware, Trojans and other viruses do not infect our computer, but we must bear in mind that all operating systems are vulnerable, all of them. We can say that in an operating system there are fewer attackers than in others or even that it is more controlled, but it is true that there is no operating system fully shielded from external threats. In this case we are talking about Proton RAT, a Trojan that has managed to bypass Apple's security measures in macOS.
The way to hide from this Proton RAT is really worked and what it does to impersonate our identity and even take over our Mac in remote mode, is use an application to get passwords and all user data. This is a video that explains how it works and that we find in ZDNet:
For now we are before a "legal Trojan" that in the wrong hands can be really harmful for the user who does not notice its installation. This was a program that worked as a vigilante, controlling bad practices by some employees and the like. Logically like everything in this world if it falls on people who do not have good intentions (as is the case) then it becomes a problem for all users since behind a verified application you can obtain all the private data of anyone.
But for the proper functioning of this identity theft in an application and to be effective, it requires a verified developer identity and "falsify the application" and for this the only option to obtain it is through counterfeiting or theft and there is the task of Apple, to discover those false identifications in the applications and to eliminate them.
It is evident that Apple is already working on it or we are convinced that it will begin to do so from the moment it arrives from its existence, but we must always be alert with what we install on our computers and obviously continue to trust the security of the system , which is very good. For now, the official website of this Trojan, ptn.is is off.