1 month ago
17
Windows has ever been a favourite people for hackers, but it seems they person present figured retired however to actively people Macs arsenic well. We've seen an alarming emergence in malware affecting Mac computers, stealing idiosyncratic information and cryptocurrency.
Threat actors are present utilizing AI on with elaborate societal engineering tricks to people Apple users, and the institution doesn’t look to beryllium doing overmuch astir it. Meanwhile, a cybersecurity study has identified a caller Mac malware called FrigidStealer, which spreads done fake browser updates and compromised websites.
Image of a Mac laptop (Kurt "CyberGuy" Knutsson)
What you request to know
A caller malware strain called FrigidStealer is targeting macOS users arsenic portion of a broader run involving fake update scams, cybersecurity steadfast Proofpoint reported. FrigidStealer spreads done compromised websites that show deceptive browser update prompts. When users click connected these prompts, they unknowingly download a malicious DMG file. Once executed, the malware requests the user’s strategy password to summation elevated privileges earlier stealing delicate information, including browser cookies, password-related files, cryptocurrency information and Apple Notes.
Proofpoint identified 2 caller menace actors down the operation: TA2726, which functions arsenic a postulation organisation work provider, and TA2727, which delivers FrigidStealer to Mac users. The run besides deploys malware connected Windows and Android devices, signaling a multi-platform onslaught strategy. The cybersecurity steadfast assessed with precocious assurance that TA2726 distributes postulation for different malware campaigns arsenic well. Some operations antecedently attributed to TA569 person present been reclassified nether TA2726 and TA2727.
TA569 – besides known arsenic Mustard Tempest, Gold Prelude and Purple Vallhund – is linked to the cybercrime syndicate EvilCorp and was archetypal identified successful 2022.
Proofpoint besides assessed with mean assurance that TA2727 purchases postulation done online forums to dispersed malware, which could beryllium its ain oregon that of imaginable clients.
"These are postulation sellers and malware distributors and person been observed successful aggregate web-based onslaught chains similar compromised website campaigns," the study stated, "including those utilizing fake update-themed lures."
Fake update lure delivering FrigidStealer via Safari, left, and Chrome, close (Proofpoint) (Kurt "CyberGuy" Knutsson)
BEST ANTIVIRUS FOR MAC, PC, IPHONES, ANDROIDS - CYBERGUY PICKS
Infostealers are connected the rise
Threat quality platform KELA reported that hackers utilizing Lumma, on with StealC, Redline and different infostealers, infected 4.3 cardinal machines successful 2024, compromising an estimated 330 cardinal credentials. Security researchers besides observed 3.9 cardinal credentials circulating successful lists that look to originate from infostealer logs.
Infostealer malware is expected to stay a persistent menace successful 2025. With malware-as-a-service platforms connected the emergence and infostealers becoming much sophisticated, cybercriminals volition apt proceed relying connected them arsenic a superior instrumentality for stealing credentials and infiltrating systems.
A antheral moving connected his Mac laptop (Kurt "CyberGuy" Knutsson)
FROM TIKTOK TO TROUBLE: HOW YOUR ONLINE DATA CAN BE WEAPONIZED AGAINST YOU
4 ways to enactment harmless from infostealer malware
As infostealer malware continues to turn successful sophistication, taking proactive steps to support your information is much important than ever. Here are 4 cardinal ways to safeguard yourself from threats similar FrigidStealer, Lumma and different credential-stealing malware.
1) Beware of fake bundle updates: One of the astir communal corruption methods is done deceptive browser update prompts. Never download updates from pop-ups oregon random websites. Instead, ever update your bundle straight from authoritative sources, specified arsenic the App Store oregon the application’s authoritative website. If successful doubt, cheque retired my detailed usher connected however to support your instrumentality and bundle updated.
2) Enable two-factor authentication (2FA): Even if your credentials are stolen, 2FA adds an other furniture of information by requiring a secondary verification method, specified arsenic a one-time codification sent to your phone. Use 2FA for each captious accounts, including email, banking and unreality services.
3) Use a password manager: Many infostealers people saved passwords successful web browsers. Instead of relying connected your browser to store credentials, usage a dedicated password manager. Get much details astir my best expert-reviewed Password Managers of 2025 here.
4) Be cautious with downloads and links. Use a beardown antivirus: Infostealer malware often spreads done malicious downloads, phishing emails and fake websites. Avoid downloading bundle oregon files from untrusted sources and ever double-check links earlier clicking them. Attackers disguise malware arsenic morganatic software, crippled cheats oregon cracked applications, truthful it is champion to instrumentality to authoritative websites and app stores for downloads.
The champion mode to safeguard yourself from malicious links that instal malware, perchance accessing your backstage information, is to person beardown antivirus bundle installed connected each your devices. This extortion tin besides alert you to phishing emails and ransomware scams, keeping your idiosyncratic accusation and integer assets safe. Get my picks for the champion 2025 antivirus extortion winners for your Windows, Mac, Android and iOS devices.
HERE’S WHAT RUTHLESS HACKERS STOLE FROM 110 MILLION AT&T CUSTOMERS
Kurt’s cardinal takeaway
As the integer scenery evolves, truthful bash the nasty threats we face. FrigidStealer is conscionable the latest reminder that nary platform, not adjacent macOS, is immune to the increasing sophistication of cybercriminals. With infostealers similar Lumma, StealC and Redline already compromising millions of devices and billions of credentials successful 2024, the emergence of AI-driven attacks and societal engineering scams signals a challenging roadworthy ahead.
Do you deliberation companies similar Apple should beryllium doing much to combat these evolving threats? Let america cognize by penning america at Cyberguy.com/Contact.
For much of my tech tips and information alerts, subscribe to my escaped CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.
Ask Kurt a question oregon fto america cognize what stories you'd similar america to cover.
Follow Kurt connected his societal channels:
Answers to the most-asked CyberGuy questions:
- What is the champion mode to support your Mac, Windows, iPhone and Android devices from getting hacked?
- What is the champion mode to enactment private, unafraid and anonymous portion browsing the web?
- How tin I get escaped of robocalls with apps and information removal services?
- How bash I region my backstage information from the internet?
New from Kurt:
- Try CyberGuy's caller games (crosswords, connection searches, trivia and more!)
- CyberGuy's exclusive coupons and deals
Copyright 2025 CyberGuy.com. All rights reserved.
Kurt "CyberGuy" Knutsson is an award-winning tech writer who has a heavy emotion of technology, cogwheel and gadgets that marque beingness amended with his contributions for Fox News & FOX Business opening mornings connected "FOX & Friends." Got a tech question? Get Kurt’s escaped CyberGuy Newsletter, stock your voice, a communicative thought oregon remark astatine CyberGuy.com.
English (CA) · 
English (US) · 
Spanish (MX) ·