A new variant of the multi-stage Shlayer malware known to target macOS users has been observed in the wild, now being capable to escalate privileges using a two-year-old technique and to disable the Gatekeeper protection mechanism to run unsigned second stage payloads.
Source: Shlayer Malware Disables macOS Gatekeeper to Run Unsigned Payloads