OS X malware such as Eleanor, Crisis, and others attempt to spy on OS X users. Luckily, modern Macs contain an LED indicator that can alert users when the camera is in use. However, Mac users legitimately make use of their webcams (e.g. a journalist Skyping with a source, or a user having an intimate FaceTime session). Unfortunately malware can easily covertly record these, all in an essentially undetectable manner :( This talk will show how, and discuss tools & techniques that can detect such behavior.