According to the developers, it's still in the early beta stage, thus lacking a builder and panel. The malware has been promoted on a dark web forum since the beginning of March.
MacStealer uses channels in Telegram as its command-and-control (C2) center. "There is no persistence method, and it relies on the user opening the app," he adds, considering the foreseeable features the developer wants to add to MacStealer in the future. Users of macOS Catalina (10.5) and versions dependent on Intel, Apple M1, and Apple M2 are affected by this malware.Īnd while MacStealer appears to be the mac malware to watch, it is pretty rudimentary, according to Thomas Reed, Malwarebytes' director of core technology. It can also extract the base64-encoded form of the database of Keychain, Apple's password manager. A new macOS malware-called MacStealer-that is capable of stealing various files, cryptocurrency wallets, and details stored in specific browsers like Firefox, Chrome, and Brave, was discovered by security researchers from Uptycs, a cybersecurity company specializing in cloud security.
0 kommentar(er)
