MacOS Malware Mimicked Popular Apps to Steal Passwords, Crypto Wallets

TL;DR


• Researchers at Jamf Threat Labs have discovered a new macOS malware that mimics popular apps like Telegram, Slack, and WhatsApp to steal user passwords and cryptocurrency wallet information. The malware, dubbed "CoinStopper," is distributed through fake app installers and can bypass macOS security features to gain access to sensitive information.

• The malware is designed to appear as legitimate app installers, prompting users to enter their login credentials or grant the app access to their system. Once installed, CoinStopper can steal passwords, cryptocurrency wallet details, and other sensitive information, which can then be used by the attackers for financial gain.

• Jamf Threat Labs has warned users to be cautious when downloading software from untrusted sources and to always verify the authenticity of any app before providing login credentials or granting system access. The researchers have also provided guidance on how to detect and remove the CoinStopper malware from affected systems.

Like summarized versions? Support us on Patreon!