Security News > 2023 > April > Mac malware-for-hire steals passwords and cryptocoins, sends “crime logs” via Telegram

Mac malware-for-hire steals passwords and cryptocoins, sends “crime logs” via Telegram
2023-04-30 01:23

The malware peddlers' focus on Apple fans was clearly reflected in the name they gave their "Product": Atomic macOS Stealer, or AMOS for short.

Well-informed Mac users should spot that the popup produced clearly belongs to the malware app itself, which is imaginatively called Setup.

Malware that specifically targets Mac users is rare compared to malware aimed at Windows users, but this find by Cyble's dark web diggers is a reminder that "Unusual" is not the same as "Non-existent".

Modern software development tools make it easier than ever to produce professional-looking applications and installers, so malware doesn't inevitably give itself away by looking sub-standard.

Consider running real-time malware blocking tools that not only scan downloads, but also proactively prevent you from reaching dangerous download servers in the first place.

Sophos products detect and block the malware in Cyble's report under the name OSX/InfoStl-CP, if you are a Sophos user and would like to check your logs.


News URL

https://nakedsecurity.sophos.com/2023/04/30/mac-malware-for-hire-steals-passwords-and-cryptocoins-sends-crime-logs-via-telegram/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Telegram 6 2 23 8 2 35