macOS stealers have gotten an more and more widespread sort of malware on the Mac, based on the 2025 State of Malware report that Malwarebytes shared this week.
Most Mac malware has traditionally been VSearch adware or the Genieo browser hijacker, however extra malicious malware is on the rise, and 2024 noticed a brand new wave of data stealing malware hit the Mac.
Stealers are designed to find bank card info, authentication cookies, cryptocurrency, passwords, and different precious knowledge that criminals can use to make cash.
Malicious apps that steal info are usually put in when a Mac consumer searches for a reputable software program product after which makes use of a malicious Google or Bing search advert to obtain an infested duplicate model of the software program they sought. Attackers are in a position to ship focused adverts for malicious software program based mostly on location, working system, software program, and search phrases.
Atomic Stealer (AMOS), an info stealer that surfaced in 2023, is used often, and a model of AMOS known as Poseidon has turning into more and more fashionable with criminals. Poseidon is marketed as with the ability to steal cryptocurrency from greater than 160 wallets in addition to passwords from net browsers and choose password managers. Poseidon downloads have masqueraded as reputable Mac apps just like the Arc Browser, tricking unsuspecting Mac customers into putting in the malware.
Malwarebytes warns that macOS stealers like Poseidon permit criminals to entry delicate assets, steal credentials, and create convincing social engineering assaults.
To keep away from this sort of assault, you will need to confirm the place software program is being downloaded from, guaranteeing that it comes from a reputable developer and never an imitation web site.
