1/29/2024 0 Comments ATOMIC free downloads![]() ![]() Mac users should download applications only from the Mac App Store or company-approved locations. Remind employees not to download applications from untrusted sites.Keep your organization’s web protection tools up to date.Security admins or IT pros should keep the following in mind to protect employees from ClearFake and Atomic Stealer: How to protect against this malware threat The AMOS stealer can be identified using the following indicators: Malwarebytes found that the following malicious domains are associated with this threat: SEE: Some threat actors have used Apple devices for surveillance over the last year, and it’s a trend that may continue, according to Kaspersky. dmg file that can steal passwords and extract files. Victims who click through to the false updates will download a. Then, the ClearFake scam will deliver Atomic Stealer. Image: Malwarebytesįigure B The fake Chrome update page is more contemporary. Potential victims will see sites posing as legitimate browser updates.įigure A The malicious fake Safari page can be identified as spam due to its odd spacing and use of older icons. How ClearFake poses as Safari and Chrome updatesĬlearFake is a sequence of malicious websites that purport to offer updates for Safari (Figure A) and Chrome (Figure B). How to protect against this malware threat.How ClearFake poses as Safari and Chrome updates.“Fake browser updates have been a common theme for Windows users for years, and yet up until now the threat actors didn’t expand onto MacOS in a consistent way,” Segura pointed out. Jérôme Segura, senior director of threat intelligence at Malwarebytes, noted in his post about the attack that ClearFake is actively being updated and that its use of smart contacts in particular makes it “one of the most prevalent and dangerous social engineering schemes.” The malware is capable of grabbing a user’s data and sending it to an attacker’s command and control server. ![]() The new malware variant, distributed through the fake browser update delivery mechanism ClearFake, advertises itself as updates for Apple’s Safari browser and Google’s Chrome browser. Atomic Stealer Distributes Malware to Macs Through False Browser DownloadsĪtomic Stealer malware advertises itself through ClearFake browser updates disguised as Google's Chrome and Apple’s Safari.Īnti-malware software provider Malwarebytes has described a new variant of Atomic Stealer (also known as AMOS), which is malware targeting Apple users. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |