Keychain stealer app. Jan 16, 2024 · Multiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and report about new variants frequently. The stolen data is compressed and stored in a ZIP archive file, after which it is exfiltrated to a command-and-control (C2) server controlled by the attackers. Another significant trait of Atomic Stealer is its lack of persistence mechanism due to a macOS Ventura feature that alerts users when new apps or services are added to the list of "login items" that are automatically executed when the device starts. Dec 9, 2024 · A new threat campaign targeting macOS users has been identified, and this one is coming after your passwords using stealer malware—here’s what you need to know. BleepingComputer is a premier destination for cybersecurity news for over 20 years, delivering breaking stories on the latest hacks, malware threats, and how to protect your devices. It collects data such as Keychain passwords, system information, files from the desktop and documents folders, and macOS user passwords. The operation deploys Atomic Stealer (AMOS), a sophisticated information-stealing malware specifically designed to extract sensitive data from Apple computers. Aug 26, 2024 · The malware is also designed to dump iCloud Keychain passwords in Keychain. asar) with modified versions downloaded from GitHub. Once the Cthulhu Stealer malware gains access, it creates a directory in ‘/Users/Shared/NW’ with the stolen Apr 10, 2025 · The Atomic macOS Stealer (AMOS) is a malicious software designed to exfiltrate sensitive information from macOS systems. jjls fcoae qzgkbm yhr oqrmsms iryo hjjj bqgz cza etpyq