Home windows has all the time been a favourite goal for hackers, nevertheless it appears they’ve now found out actively goal Macs as effectively. We have seen an alarming rise in malware affecting Mac computer systems, stealing private knowledge and cryptocurrency.
Risk actors at the moment are utilizing AI together with elaborate social engineering methods to focus on Apple customers, and the corporate doesn’t appear to be doing a lot about it. In the meantime, a cybersecurity report has recognized a brand new Mac malware referred to as FrigidStealer, which spreads via pretend browser updates and compromised web sites.
Picture of a Mac laptop computer (Kurt “CyberGuy” Knutsson)
What that you must know
A brand new malware pressure referred to as FrigidStealer is focusing on macOS customers as a part of a broader marketing campaign involving pretend replace scams, cybersecurity agency Proofpoint reported. FrigidStealer spreads via compromised web sites that show misleading browser replace prompts. When customers click on on these prompts, they unknowingly obtain a malicious DMG file. As soon as executed, the malware requests the person’s system password to realize elevated privileges earlier than stealing delicate data, together with browser cookies, password-related recordsdata, cryptocurrency knowledge and Apple Notes.
Proofpoint recognized two new menace actors behind the operation: TA2726, which capabilities as a visitors distribution service supplier, and TA2727, which delivers FrigidStealer to Mac customers. The marketing campaign additionally deploys malware on Home windows and Android gadgets, signaling a multi-platform assault technique. The cybersecurity agency assessed with excessive confidence that TA2726 distributes visitors for different malware campaigns as effectively. Some operations beforehand attributed to TA569 have now been reclassified underneath TA2726 and TA2727.
TA569 – often known as Mustard Tempest, Gold Prelude and Purple Vallhund – is linked to the cybercrime syndicate EvilCorp and was first recognized in 2022.
Proofpoint additionally assessed with reasonable confidence that TA2727 purchases visitors via on-line boards to unfold malware, which could possibly be its personal or that of potential purchasers.
“These are visitors sellers and malware distributors and have been noticed in a number of web-based assault chains like compromised web site campaigns,” the report said, “together with these utilizing pretend update-themed lures.”
Pretend replace lure delivering FrigidStealer by way of Safari, left, and Chrome, proper (Proofpoint) (Kurt “CyberGuy” Knutsson)
BEST ANTIVIRUS FOR MAC, PC, IPHONES, ANDROIDS – CYBERGUY PICKS
Infostealers are on the rise
Risk intelligence platform KELA reported that hackers utilizing Lumma, together with StealC, Redline and different infostealers, contaminated 4.3 million machines in 2024, compromising an estimated 330 million credentials. Safety researchers additionally noticed 3.9 billion credentials circulating in lists that seem to originate from infostealer logs.
Infostealer malware is anticipated to stay a persistent menace in 2025. With malware-as-a-service platforms on the rise and infostealers changing into extra refined, cybercriminals will seemingly proceed counting on them as a major device for stealing credentials and infiltrating methods.
A person engaged on his Mac laptop computer (Kurt “CyberGuy” Knutsson)
FROM TIKTOK TO TROUBLE: HOW YOUR ONLINE DATA CAN BE WEAPONIZED AGAINST YOU
4 methods to remain protected from infostealer malware
As infostealer malware continues to develop in sophistication, taking proactive steps to guard your knowledge is extra vital than ever. Listed below are 4 key methods to safeguard your self from threats like FrigidStealer, Lumma and different credential-stealing malware.
1) Beware of pretend software program updates: One of the widespread an infection strategies is thru misleading browser replace prompts. By no means obtain updates from pop-ups or random web sites. As an alternative, all the time replace your software program straight from official sources, such because the App Retailer or the applying’s official web site. If doubtful, try my detailed information on hold your gadget and software program up to date.
2) Allow two-factor authentication (2FA): Even when your credentials are stolen, 2FA provides an additional layer of safety by requiring a secondary verification methodology, corresponding to a one-time code despatched to your telephone. Use 2FA for all vital accounts, together with e-mail, banking and cloud providers.
3) Use a password supervisor: Many infostealers goal saved passwords in internet browsers. As an alternative of relying in your browser to retailer credentials, use a devoted password supervisor. Get extra particulars about my greatest expert-reviewed Password Managers of 2025 right here.
4)Â Be cautious with downloads and hyperlinks. Use a robust antivirus: Infostealer malware typically spreads via malicious downloads, phishing emails and faux web sites. Keep away from downloading software program or recordsdata from untrusted sources and all the time double-check hyperlinks earlier than clicking them. Attackers disguise malware as respectable software program, recreation cheats or cracked purposes, so it’s best to stay to official web sites and app shops for downloads.
One of the simplest ways to safeguard your self from malicious hyperlinks that set up malware, probably accessing your non-public data, is to have robust antivirus software program put in on all of your gadgets. This safety may also warn you to phishing emails and ransomware scams, conserving your private data and digital property protected. Get my picks for one of the best 2025 antivirus safety winners on your Home windows, Mac, Android and iOS gadgets.
HERE’S WHAT RUTHLESS HACKERS STOLE FROM 110 MILLION AT&T CUSTOMERS
Kurt’s key takeaway
Because the digital panorama evolves, so do the nasty threats we face. FrigidStealer is simply the newest reminder that no platform, not even macOS, is proof against the rising sophistication of cybercriminals. With infostealers like Lumma, StealC and Redline already compromising tens of millions of gadgets and billions of credentials in 2024, the rise of AI-driven assaults and social engineering scams indicators a difficult street forward.Â
Do you suppose corporations like Apple must be doing extra to fight these evolving threats? Tell us by writing us at Cyberguy.com/Contact.
For extra of my tech suggestions and safety alerts, subscribe to my free CyberGuy Report E-newsletter by heading to Cyberguy.com/E-newsletter.
Ask Kurt a query or tell us what tales you need us to cowl.
Comply with Kurt on his social channels:
Solutions to the most-asked CyberGuy questions:
New from Kurt:
Copyright 2025 CyberGuy.com. All rights reserved.
