New Reaper Malware Uses Fake Microsoft Domain to Steal macOS Passwords

The newly discovered Reaper malware bypasses Apple’s macOS Tahoe 26.4 security updates to steal passwords, crypto assets, and install a permanent backdoor.

·

AMOS, Apple, Atomic Stealer, Cyber Attack, cybersecurity, macOS, Malware, Reaper, Security

¶¶¶¶¶

Researchers Build First Public Apple M5 macOS Kernel Exploit with Mythos Preview

Security researchers have unveiled the first publicly known macOS kernel memory corruption exploit targeting Apple’s latest M5 silicon, marking a significant moment for both offensive security and Apple’s next-generation defenses. The exploit, develope…

·

Apple, cyber security, Cyber Security News, macOS, Malware

¶¶¶¶¶

Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS

Hackers are using Fake interview apps to spread JobStealer malware on macOS and Windows to steal crypto wallets, browser data, and passwords.

·

Cyber Attack, cybersecurity, Fraud, Interview, JobStealer, macOS, Malware, SCAM, Scams and Fraud, Security, Telegram, Windows

¶¶¶¶¶

macOS Malware Abuses Google Ads and Claude Shared Chats to Deliver Payloads

Threat actors are deploying a sophisticated malvertising campaign targeting macOS users by exploiting Google Ads and legitimate Anthropic Claude shared chats. Security researcher Berk Albayrak uncovered this novel attack chain on May 10, which distribu…

·

cyber security, Cyber Security News, Google, macOS, Malware

¶¶¶¶¶

Fake macOS Troubleshooting Sites Used to Steal iCloud Data in ClickFix Scam

Microsoft researchers warn of a new ClickFix campaign targeting macOS with fake guides on Medium and Craft to deploy AMOS and SHub Stealer via Terminal commands.

·

AMOS, ClickFix, Cyber Attack, cybersecurity, ICLOUD, macOS, MacSync, Malware, Microsoft, SCAM, Scams and Fraud, Security, SHub Stealer

¶¶¶¶¶

Fake Disk Cleanup Apps Fuel New macOS ClickFix Attack

A wave of ClickFix-style social engineering attacks that specifically target macOS users, using fake disk cleanup and system utility tips hosted on popular content platforms. Instead of installing helpful tools, these Terminal commands silently fetch a…

·

cyber security, Cyber Security News, macOS

¶¶¶¶¶

Lazarus Targets macOS Users With New “Mach-O Man” Malware Kit

Lazarus Group is abusing “ClickFix” social engineering to push a new macOS malware kit dubbed “Mach-O Man,” giving attackers a direct path to credentials, Keychain secrets, and corporate access in fintech and crypto environments. This research is autho…

·

cyber security, Cyber Security News, macOS, Malware

¶¶¶¶¶

Researchers Warn macOS textutil, KeePassXC Can Fuel Automation Attacks

Researchers are warning that widely trusted local tools such as macOS’s textutil and KeePassXC can pose unexpected security risks when used within automated workflows. The issue is not traditional vulnerabilities such as memory corruption or code…

·

cyber security, Cyber Security News, macOS

¶¶¶¶¶

Microsoft spots Sapphire Sleet macOS attack using AppleScript and social engineering

A new macOS-focused cyber campaign linked to the North Korean threat actor Sapphire Sleet, highlighting how attackers are increasingly relying on social engineering rather than software vulnerabilities to compromise systems. Rather than exploiting secu…

·

cyber security, Cyber Security News, macOS, Microsoft

¶¶¶¶¶

Fake Zoom SDK Update Spreads Sapphire Sleet Malware in New macOS Attack Chain

A sophisticated macOS-focused cyber campaign orchestrated by the North Korean threat actor Sapphire Sleet, revealing a shift toward social engineering over traditional software exploitation. Instead of relying on vulnerabilities, the attackers trick us…

·

cyber security, Cyber Security News, macOS, Malware

¶¶¶¶¶

1010.cx

1010.cx

Category: macOS