Security News > 2023 > November > Atomic Stealer malware strikes macOS via fake browser updates
2023-11-25 15:11
The 'ClearFake' fake browser update campaign has expanded to macOS, targeting Apple computers with Atomic Stealer malware.
The ClearFake campaign started in July this year to target Windows users with fake Chrome update prompts that appear on breached sites via JavaScript injections.
The payload dropped in these cases is Atomic, an info-stealing malware sold to cybercriminals via Telegram channels for $1,000/month.
All Safari browser updates will be distributed through macOS's Software Update, or for other browsers, within the browser itself.
If you see any prompts to download browser updates on websites, they should be ignored.
Lumma Stealer malware now uses trigonometry to evade detection.
News URL
Related news
- Fake browser updates spread updated WarmCookie malware (source)
- Firefox Zero-Day Under Attack: Update Your Browser Immediately (source)
- Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser (source)
- macOS HM Surf vuln might already be under exploit by major malware family (source)
- North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS (source)
- North Korean hackers use new macOS malware against crypto firms (source)
- North Korean Hackers Target macOS Using Flutter-Embedded Malware (source)
- New RustyAttr Malware Targets macOS Through Extended Attribute Abuse (source)