According to PANews, researchers have identified a malware attack targeting macOS users that has been active for four months. The attack involves malware disguised as a video conferencing application, which steals passwords from the Keychain, session cookies from browsers like Google Chrome, Brave, and Opera, as well as cryptocurrency wallet information.
Tara Gould from Cado Security Labs revealed that attackers are using AI-generated content to create fake websites and social media accounts, posing as reputable companies. Victims are often approached through platforms like Telegram, discussing blockchain or cryptocurrency business opportunities. Once the file is installed, users are prompted to enter their macOS password, allowing further data theft.
Security experts advise users to remain vigilant, especially regarding unfamiliar links related to business opportunities. Utilizing protective tools such as Intego VirusBarrier can effectively defend against such threats.