[Warning]: New MacOS malware discovered named Atomic MacOS Stealer.

[Dave1]

A new MacOS malware in the wild,



https://twitter.com/phd_phuc/status/1651001139750420480

And it will extract the victims with the following information including crypto wallets:

Desktop cryptocurrency wallets:

• Electrum
• Binance
• Exodus
• Atomic
• Coinomi

Cryptocurrency wallet extensions including:

• Trust Wallet
• Exodus Web3 Wallet
• Jaxx Liberty
• Coinbase
• Guarda
• TronLink
• Trezor Password Manager
• Metamask
• Yoroi
• BinanceChain

It's scary that threat actors are also targeting MacOS for sometime not and not just Windows or Chromium based OS.

[1714769830]

1714769830

[1714769830]

1714769830

[1714769830]

1714769830

[1714769830]

1714769830

[1714769830]

1714769830

[_act_]

Desktop cryptocurrency wallets:

• Electrum
• Binance
• Exodus
• Atomic
• Coinomi

What is Binance doing there? Binance is an exchange, not a wallet. If it can target Binance, probably it may be able to steal from other exchanges app too.

It's scary that threat actors are also targeting MacOS for sometime not and not just Windows or Chromium based OS.

MacOS is an operative system too, on an online device.

[cryptomaniac_xxx]

I try to check the recent list of supposedly Mac viruses and malware here:

https://www.macworld.com/article/672879/list-of-mac-viruses-malware-and-security-flaws.html

And it's not yet listed, so yeah probably a new malware that was recently discovered and it's being  It even sends logs via Telegram. Priced at $1000/month?

Although this can be linked to Raccoon stealer as well based on the IP address found by the investigators.

[Nwada001]

Mac was on my list of highly secured OSes when it comes to viruses and other forms of attack. But it's obvious that no system is completely safe and immune; those hackers just have to make it their primary goal to develop something that they will use to penetrate any form of OS they want.

We just have to take charge of our own security and think about the kinds of things we integrate into our system, like extensions or whatever they might be. If this has been going on for over 2 weeks, who knows how many have fallen victim to this scam? Since they will completely gain access to every crypto-related extension and app on the affected victim's PC, they will probably move out any valuables on those wallets.

[vv181]

Mac was on my list of highly secured OSes when it comes to viruses and other forms of attack. But it's obvious that no system is completely safe and immune; those hackers just have to make it their primary goal to develop something that they will use to penetrate any form of OS they want.

The source or how the malware spreads are not listed on the tweet. Generally, without a doubt, this kind of malware is coming from illegitimate or unofficial sources, regardless of any OS. So it is essential to use non-cracked/pirated software and make sure to download it from legitimate sources. They also might use either or a combination of social engineering and phishing.

A protective measure from any antivirus or OS securities can be bypassed, as initially happened with the malware, so the user itself is the last defence.

[Z390]

It's because of all these messes is why I prefer using my Android smartphone to keep a small amount of crypto and store the rest on a hardware wallet, computers are too risky for crypto wallets IMO, there are too many ways you can do something you aren't supposed to do, malware, trojans, virus, spyware, etc, you can't wake up every morning using your PC with the mindset that you can do something wrong. I will like to see Ledger and Trezor having a bigger touchscreen where you can operate them without the need to connect to a PC, I will be buying instantly if they do this.

[Nwada001]

~snip~

The source or how the malware spreads are not listed on the tweet. Generally, without a doubt, this kind of malware is coming from illegitimate or unofficial sources, regardless of any OS. So it is essential to use non-cracked/pirated software and make sure to download it from legitimate sources. They also might use either or a combination of social engineering and phishing.

A protective measure from any antivirus or OS securities can be bypassed, as initially happened with the malware, so the user itself is the last defence.

That's true... My last PC, which I dumped and started using a newer one, was infected by a virus. If I had not been careful enough, I could have been a victim of the clipboard virus. This was as a result of buying the so-called pirated Windows from a third party, thinking I had a shortcut and cheaper software.

I learned my lessons from that, and I believe making their way into an original OS is the best way for any hacker to completely gain access to an entire system with all specific directives on what their exact targets are.

Apart from this pirated OS from third parties, I believe there are also possible ways for hackers to penetrate, provided that one is still making use of the internet with that computer. Those dark developers are getting smarter day by day; one just needs to be extremely careful at all times.

It's because of all these messes is why I prefer using my Android smartphone to keep a small amount of crypto and store the rest on a hardware wallet, computers are too risky for crypto wallet.

Even mobile phones can be penetrated, so you are not completely safe; we just have to apply some preventive measures irrespective of which gadget we choose to use. Hardware wallets are always highly recommended as the safest, but they're not completely free from being penetrated as long as you are connecting them to a device with an internet connection. You also need to be careful about the kind of device you use them on.

[pawanjain]

I am really shocked to see MacOS being targeted here since it is one of best secured systems out there.
Besides that, the malware is able to steal data from so many known extensions and wallets which is itself really shocking.
It's best to store the coin in a hardware wallet and use a small portion on our regular device in for regular usage.

[Dr.Bitcoin_Strange]

A new MacOS malware in the wild,

It's scary that threat actors are also targeting MacOS for sometime not and not just Windows or Chromium based OS.

Wow, these scammers are putting in a lot of effort to design those malwares, making what was difficult in the past very easy now. People just need to operate very smartly these days with their digital assets; otherwise, there can be a steady hack. Just as @_Act_ mentioned, if the malware is able to penetrate Binance, that means it's also possible to penetrate other CEX. Hardware wallets are the safest Bitcoin storage, with your wallet generated on an air-gap device, as a friend would always say.

It's because of all these messes is why I prefer using my Android smartphone to keep a small amount of crypto and store the rest on a hardware wallet,

At Z390, you are not even 50% completely safe with your Android, as it could also be penetrated as long as your phone is going online.

[Husna QA]

A new MacOS malware in the wild,
-snip-
It's scary that threat actors are also targeting MacOS for sometime not and not just Windows or Chromium based OS.

No Operating System is perfect; even MacOS, which is pretty tough on viruses, can be affected by viruses/malware.
The more popular an OS is, the higher the risk of becoming a target for malware attacks.

Malware popularity

If an OS is only used by very few people, it’s much less likely that the OS will be attacked. However, if usage of the OS grows – so that it achieves mass distribution – the OS will attract the attention of malware creators that will see an opportunity to gain from attacking the OS.

Popular OSs and applications… lead to popular malware

In effect, the more popular an operating system or an application is – the more often it’s likely to be prone to computer virus attacks.

The number of malicious programs created for Windows, Linux and Mac OS closely correlates to the market share that each of these operating systems has achieved.

I was a Windows OS user in the past and often had problems when it was exposed to malware, then finally switched to macOS about ten years ago. Until now, I have never experienced being exposed to malware. But just in case, I had Bitdefender antivirus installed for a few years.

   

What is Binance doing there? Binance is an exchange, not a wallet. If it can target Binance, probably it may be able to steal from other exchanges app too.

It seems to refer to the Binance app. I've even had the Binance app installed on MacOS for a long time.

[Dunamisx]

The more we discovered some the more they also keep advancing their techniques in scam, there have been several attempts for an attack which availed not because of their early exposure, once information like this comes to our hearing, we ensure an immediate circular on this, let's be more vigilant in identifying any form of malicious attack on our wallets, using centralized exchange should be bo more new to us to always avoid because they are more vulnerable for an attack.