Home windows has all the time been a favourite goal for hackers, but it surely appears they’ve now found out how one can actively goal Macs as nicely. We have seen an alarming rise in malware affecting Mac computer systems, stealing private knowledge and cryptocurrency.
Menace actors are actually utilizing AI together with elaborate social engineering tips to focus on Apple customers, and the corporate doesn’t appear to be doing a lot about it. In the meantime, a cybersecurity report has recognized a brand new Mac malware referred to as FrigidStealer, which spreads via pretend browser updates and compromised web sites.
Picture of a Mac laptop computer (Kurt “CyberGuy” Knutsson)
What you should know
A brand new malware pressure referred to as FrigidStealer is focusing on macOS customers as a part of a broader marketing campaign involving pretend replace scams, cybersecurity agency Proofpoint reported. FrigidStealer spreads via compromised web sites that show misleading browser replace prompts. When customers click on on these prompts, they unknowingly obtain a malicious DMG file. As soon as executed, the malware requests the person’s system password to realize elevated privileges earlier than stealing delicate info, together with browser cookies, password-related recordsdata, cryptocurrency knowledge and Apple Notes.
Proofpoint recognized two new menace actors behind the operation: TA2726, which features as a visitors distribution service supplier, and TA2727, which delivers FrigidStealer to Mac customers. The marketing campaign additionally deploys malware on Home windows and Android gadgets, signaling a multi-platform assault technique. The cybersecurity agency assessed with excessive confidence that TA2726 distributes visitors for different malware campaigns as nicely. Some operations beforehand attributed to TA569 have now been reclassified underneath TA2726 and TA2727.
TA569 – also referred to as Mustard Tempest, Gold Prelude and Purple Vallhund – is linked to the cybercrime syndicate EvilCorp and was first recognized in 2022.
Proofpoint additionally assessed with average confidence that TA2727 purchases visitors via on-line boards to unfold malware, which could possibly be its personal or that of potential purchasers.
“These are traffic sellers and malware distributors and have been observed in multiple web-based attack chains like compromised website campaigns,” the report said, “including those using fake update-themed lures.”
Faux replace lure delivering FrigidStealer through Safari, left, and Chrome, proper (Proofpoint) (Kurt “CyberGuy” Knutsson)
BEST ANTIVIRUS FOR MAC, PC, IPHONES, ANDROIDS – CYBERGUY PICKS
Infostealers are on the rise
Menace intelligence platform KELA reported that hackers utilizing Lumma, together with StealC, Redline and different infostealers, contaminated 4.3 million machines in 2024, compromising an estimated 330 million credentials. Safety researchers additionally noticed 3.9 billion credentials circulating in lists that seem to originate from infostealer logs.
Infostealer malware is anticipated to stay a persistent menace in 2025. With malware-as-a-service platforms on the rise and infostealers turning into extra subtle, cybercriminals will possible proceed counting on them as a major software for stealing credentials and infiltrating methods.
A person engaged on his Mac laptop computer (Kurt “CyberGuy” Knutsson)
FROM TIKTOK TO TROUBLE: HOW YOUR ONLINE DATA CAN BE WEAPONIZED AGAINST YOU
4 methods to remain secure from infostealer malware
As infostealer malware continues to develop in sophistication, taking proactive steps to guard your knowledge is extra essential than ever. Listed here are 4 key methods to safeguard your self from threats like FrigidStealer, Lumma and different credential-stealing malware.
1) Beware of faux software program updates: One of the widespread an infection strategies is thru misleading browser replace prompts. By no means obtain updates from pop-ups or random web sites. As a substitute, all the time replace your software program instantly from official sources, such because the App Retailer or the applying’s official web site. If doubtful, take a look at my detailed information on how one can hold your gadget and software program up to date.
2) Allow two-factor authentication (2FA): Even when your credentials are stolen, 2FA provides an additional layer of safety by requiring a secondary verification methodology, akin to a one-time code despatched to your cellphone. Use 2FA for all crucial accounts, together with e-mail, banking and cloud companies.
3) Use a password supervisor: Many infostealers goal saved passwords in internet browsers. As a substitute of relying in your browser to retailer credentials, use a devoted password supervisor. Get extra particulars about my greatest expert-reviewed Password Managers of 2025 right here.
4) Be cautious with downloads and hyperlinks. Use a robust antivirus: Infostealer malware typically spreads via malicious downloads, phishing emails and faux web sites. Keep away from downloading software program or recordsdata from untrusted sources and all the time double-check hyperlinks earlier than clicking them. Attackers disguise malware as professional software program, sport cheats or cracked functions, so it’s best to stay to official web sites and app shops for downloads.
One of the best ways to safeguard your self from malicious hyperlinks that set up malware, doubtlessly accessing your personal info, is to have sturdy antivirus software program put in on all of your gadgets. This safety can even warn you to phishing emails and ransomware scams, maintaining your private info and digital property secure. Get my picks for one of the best 2025 antivirus safety winners to your Home windows, Mac, Android and iOS gadgets.
HERE’S WHAT RUTHLESS HACKERS STOLE FROM 110 MILLION AT&T CUSTOMERS
Kurt’s key takeaway
Because the digital panorama evolves, so do the nasty threats we face. FrigidStealer is simply the most recent reminder that no platform, not even macOS, is proof against the rising sophistication of cybercriminals. With infostealers like Lumma, StealC and Redline already compromising thousands and thousands of gadgets and billions of credentials in 2024, the rise of AI-driven assaults and social engineering scams indicators a difficult street forward.
Do you assume firms like Apple needs to be doing extra to fight these evolving threats? Tell us by writing us at Cyberguy.com/Contact.
For extra of my tech ideas and safety alerts, subscribe to my free CyberGuy Report E-newsletter by heading to Cyberguy.com/E-newsletter.
Ask Kurt a query or tell us what tales you would like us to cowl.
Comply with Kurt on his social channels:
Solutions to the most-asked CyberGuy questions:
New from Kurt:
Copyright 2025 CyberGuy.com. All rights reserved.
