Security News > 2023 > November > Atomic Stealer malware strikes macOS via fake browser updates
2023-11-25 15:11
The 'ClearFake' fake browser update campaign has expanded to macOS, targeting Apple computers with Atomic Stealer malware.
The ClearFake campaign started in July this year to target Windows users with fake Chrome update prompts that appear on breached sites via JavaScript injections.
The payload dropped in these cases is Atomic, an info-stealing malware sold to cybercriminals via Telegram channels for $1,000/month.
All Safari browser updates will be distributed through macOS's Software Update, or for other browsers, within the browser itself.
If you see any prompts to download browser updates on websites, they should be ignored.
Lumma Stealer malware now uses trigonometry to evade detection.
News URL
Related news
- New FrigidStealer Malware Targets macOS Users via Fake Browser Updates (source)
- New Mac Malware Poses as Browser Updates (source)
- North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS (source)
- New Microsoft script updates Windows media with bootkit malware fixes (source)
- North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials (source)
- XCSSET macOS malware returns with first new version since 2022 (source)
- Microsoft spots XCSSET macOS malware variant used for crypto theft (source)
- Microsoft Uncovers New XCSSET macOS Malware Variant with Advanced Obfuscation Tactics (source)
- The XCSSET info-stealing malware is back, targeting macOS users and devs (source)
- New FrigidStealer infostealer infects Macs via fake browser updates (source)