Jamf Threat Labs ha isolato un infostealer in C++ nativo che raggiunge il Mac tramite un finto installer notarizzato da Apple: valida la password in locale con dscl, apre il keychain e cifra il bottino in AES-256-GCM prima di esfiltrarlo.

CrashStealer uses a notarized macOS dropper to pass Gatekeeper, then steals browser, wallet, password manager, file, and keychain data.

A new macOS information-stealing malware called CrashStealer pretends to be Apple's crash-reporting tool to steal credentials, keychain data, and crypto wallets.

This Apple credential theft attack targeted your macOS login password while bypassing the built-in malware protection. Here’s what you need to know about CrashStealer.

Jamf Threat Labs ha isolato un infostealer in C++ nativo che raggiunge il Mac tramite un finto installer notarizzato da Apple: valida la password in locale con dscl, apre il…

Disguised as Apple's CrashReporter, CrashStealer steals passwords, browser data, crypto wallets, and other sensitive information.

Apple users faced a serious threat from a new malware operation involving a phony meeting application known as CrashStealer. This malicious software harvested sensitive passwords…

CrashStealer is now in the wild, targeting your data, passwords, and cryptocurrency. Here's everything you need to know about this new MacOS threat.

Momentan kursiert ein neuer Mac-Datenschädling, der Zugangsdaten und Kryptowährungen klauen kann. Er tarnt sich als Apple-Software.

CrashStealer schnappt sich wichtige Nutzerinformationen wie Passwörter und Krypto-Wallets und kann noch mehr Schaden anrichten. Offenbar gehen die Kriminellen gezielt vor. Eine…