Skip to content
ZDNET·

🔒CrashStealer Malware Targets MacOS Users With Apple-Like Trick

New MacOS malware steals your data and crypto credentials

TL;DR

CrashStealer, a new form of malware masquerading as Apple's crash reporting tool, targets MacOS users by harvesting sensitive information like account credentials and cryptocurrency wallets. Detected on July 13th, it uses social engineering tactics to spread.

A new piece of malware called CrashStealer has been released into the wild, targeting MacOS users with a sophisticated trick. It disguises itself as Apple's crash reporting tool, making it appear legitimate and fooling unsuspecting victims. The malware steals data, account credentials, keychain entries, and cryptocurrency wallets from infected machines. Detected by Jamf cybersecurity researchers on July 13th, CrashStealer has been in development since May but was only recently released. It uses social engineering tactics to spread, such as poisoned AI chatbot conversations and disk images (.dmg files) that clear Gatekeeper upon first launch.

CrashStealer Malware Targets MacOS Users With Apple-Like Trick — ZDNET

Key Points

1

CrashStealer was detected by Jamf cybersecurity researchers on July 13th, 2023.

2

The malware masquerades as Apple's crash reporting tool and targets MacOS users with a disk image (.dmg file).

3

Once launched, the .dmg file clears Gatekeeper, allowing CrashStealer to install and steal sensitive data like account credentials and cryptocurrency wallets.

4

CrashStealer is distributed through poisoned AI chatbot conversations and social engineering tactics targeting MacOS users.

5

Three habits can help block most MacOS threats: always check a .dmg source, verify password requests, and keep your MacOS system updated.

Why It Matters

If you're using a Mac and downloading disk images (.dmg files), be extra cautious. CrashStealer masquerades as Apple's crash reporting tool to steal sensitive data like account credentials and cryptocurrency wallets. Detected on July 13th, it uses social engineering tactics to spread, making it appear legitimate. Always verify the source of .dmg files and keep your MacOS system updated.

malwaremacosapplecrashstealer

Frequently Asked Questions

Why does this matter?

If you're using a Mac and downloading disk images (.dmg files), be extra cautious. CrashStealer masquerades as Apple's crash reporting tool to steal sensitive data like account credentials and cryptocurrency wallets. Detected on July 13th, it uses social engineering tactics to spread, making it appear legitimate. Always verify the source of .dmg files and keep your MacOS system updated.

What happened?

CrashStealer, a new form of malware masquerading as Apple's crash reporting tool, targets MacOS users by harvesting sensitive information like account credentials and cryptocurrency wallets. Detected on July 13th, it uses social engineering tactics to spread.

Comments

Subscribe to join the conversation...

Be the first to comment

Enjoyed this article?

Get it daily. 7am. Free. Reads in 5 minutes.

Also get