AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Safari passwords ipad1/5/2024 ![]() ![]() ![]() Be wary if an app asks you to bypass macOS GateKeeper protections. ![]() Don’t download software from untrusted or unknown sources – update Safari directly from your Mac in System Settings or Chrome directly from Google or within the Chrome app.How to protect against Atomic macOS Stealer (AMOS)įortunately, this new attack method is totally preventable: Here’s the fake Safari update – which is easy to spot for Apple veterans with super old Safari and iCloud icons – but of course, many people may be fooled as it uses Apple’s normal update language: via MalwarebytesĪnd here’s the fake Chrome update that’s more convincing: via Malwarebytesįor a closer look at how the ClearFake delivery of AMOS works, check out the full post from Malwarebytes. The approach works by threat actors using compromised websites to deliver fake Safari and Chrome updates. This may very well be the first time we see one of the main social engineering campaigns, previously reserved for Windows, branch out not only in terms of geolocation but also operating system. In an interesting new development, AMOS is now being delivered to Mac users via a fake browser update chain tracked as ‘ClearFake’. The new approach with AMOS is called “ClearFake,” which was a notable attack previously seen against Windows machines. In the latest chapter of the pernicious software, Malwarebytes reports that fake Safari and Chrome browser updates are now being used to sneak AMOS onto victims’ Macs (via Ankit Anubhav). We’ll cover how it works and how to avoid this threat.Īs a refresher, AMOS is a powerful piece of malware that, once installed on a victim’s machine, can steal iCloud Keychain passwords, credit card numbers, crypto wallets, files, and more.Īfter the discovery of the early AMOS threats in March and April, the security researchers at Malwarebytes discovered in September that Mac users were installing AMOS through fake Google Search ads. Now, with the latest iteration of the malware, malicious parties are planting AMOS inside fake Safari and Chrome browser updates for Mac. A powerful new malware launched in early 2023 called Atomic macOS Stealer (AMOS) targets Apple users and has become a growing threat. ![]()
0 Comments
Read More
Leave a Reply. |