malware

New macOS Stealer Campaign Uses Script Editor in ClickFix Attack

, , , ,

A new campaign delivering the Atomic Stealer malware to macOS users exploits the built-in Script Editor app in a variation of the ClickFix social engineering attack, tricking victims into running malicious scripts without manual Terminal interaction. The attack uses fake Apple-themed sites that launch Script Editor with pre-filled code to download and execute a payload that steals sensitive data like passwords, crypto wallets, and system info. Users are advised to treat Script Editor prompts with caution and rely only on official Apple resources for system troubleshooting.

https://www.bleepingcomputer.com/news/security/new-macos-stealer-campaign-uses-script-editor-in-clickfix-attack/

Fake LinkedIn Jobs Trick Mac Users Into Downloading Flexible Ferret Malware

,

Fake LinkedIn job postings target Mac users to download Flexible Ferret malware via a false software update during a video interview process. Attackers impersonate recruiters and prompt victims to download malicious files disguised as FFmpeg updates. This malware enables extensive control over infected devices, including credential theft and system manipulation. Users are advised to update software regularly, avoid unsolicited commands, and verify potential threats to stay safe.

https://www.malwarebytes.com/blog/news/2025/11/fake-linkedin-jobs-trick-mac-users-into-downloading-flexible-ferret-malware

Scroll to Top