MacOS info-stealers quickly evolve to evade XProtect detection

January 16, 2024 at 04:34PM The macOS platform faces persistent challenges with information stealers evading detection, as highlighted in a report by SentinelOne that presents three malware examples circumventing XProtect. KeySteal, Atomic Stealer, and CherryPie showcase the ability of malware to evolve and avoid detection, emphasizing the need for advanced security measures beyond static detection. … Read more

Atomic Stealer Gets an Upgrade – Targeting Mac Users with Encrypted Payload

January 11, 2024 at 09:00AM Cybersecurity researchers have found an enhanced version of the macOS information stealer, Atomic (AMOS), with updated capabilities, including payload encryption to bypass detection rules. Its cost has risen to $3,000/month with a festive promotion. Malvertising campaigns impersonating Slack and TradingView are used to distribute the malware. Caution is advised when … Read more

Atomic Stealer malware strikes macOS via fake browser updates

November 25, 2023 at 05:08PM The ‘ClearFake’ campaign, initially targeting Windows users with fake Chrome update prompts, has now expanded to Macs. The campaign utilizes Atomic Stealer (AMOS) malware to infect macOS computers. The malware disguises itself as a Safari update and attempts to steal sensitive information such as passwords, credit card details, and cryptocurrency … Read more

ClearFake Campaign Expands to Deliver Atomic Stealer on Macs Systems

November 22, 2023 at 02:24AM The macOS information stealer, Atomic, is now being distributed through a malicious web browser update chain called ClearFake. This marks the first time a social engineering campaign intended for Windows has expanded to macOS. Atomic Stealer is a commercial malware that steals data from web browsers and cryptocurrency wallets. ClearFake … Read more