Hi guys,

A new malware named MacStealer has been discovered by cybersecurity experts in Uptycs. This malware targets Mac users and steals their credentials stored in the iCloud Keychain, web browsers, cryptocurrency wallets, and potentially sensitive files. It is being distributed as malware-as-a-service (MaaS) for $100, allowing purchasers to spread the malware in their campaigns.

The threat actor behind MacStealer has been promoting it on a dark web hacking forum since the beginning of the month. The malware can infect macOS Catalina, Big Sur, Monterey, and Ventura. Once it infects a system, it can steal a range of data from Firefox, Chrome, and Brave, including account passwords, cookies, and credit card details. It can also collect cryptocurrency wallets, system information, and Keychain password information.

How does the attack work?

  • The malware is distributed as an unsigned DMG file that the victim is tricked into executing on their macOS.
  • When the victim executes the file, the malware collects passwords from the compromised machine.
  • The stolen data is then sent to remote command and control servers for later collection by the threat actor.

Here are some bullet points on how to stay safe from this type of threat:

  • Avoid downloading files from untrustworthy websites.
  • Only download software from trusted sources.
  • Use an antivirus program and keep it updated.
  • Enable two-factor authentication on all accounts.
  • Regularly back up your data to prevent loss from a malware attack.

Remember, Mac users are not immune to malware attacks. Ok, they are not as common as windows attacks, but they happen, and we see them happening more frequently. Most malware developers write malware to steal your banking passwords and crypto wallets directly from your hard drive. You won’t even know you were robbed until you check your bank account, and it’s empty.

So, for all Mac users, It is essential to prioritize your online security and take the necessary steps to protect your sensitive information.

As always, contact our team at any point of the day or night if you need anything. We are always here to support you. You can contact our privacy care team using the contact options within the Incognito app. Let me know if I can do anything to help, and I’ll talk to you soon.

All the best, Max