Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11New FrigidStealer Malware Spreads Through Fake Browser Updates on Macs
It may come as a surprise to some Mac fans, but cybercriminals are still actively looking for ways to attack macOS.
New FrigidStealer Malware Spreads Through Fake Browser Updates
A new malware strain, FrigidStealer, was recently discovered by Proofpoint and highlighted by AppleInsider.
This malware is designed to steal information from users' Macs. Using compromised websites that appear legitimate, criminals will redirect you to a fake browser update page. As you can see in the image, the pages look legitimate at first glance.
If you click the Update button, the DMG file will download to your Mac. The installation instructions also look very official—when you follow them, they will bypass Gatekeeper, which is a Mac security feature that warns you that an app is unsigned and untrusted.
The final step of the 'installation' requires you to enter your Mac password. Proofpoint explains what happens after execution:
Once executed, FrigidStealer uses Apple and osascript script files to prompt the user for their password, then collects data including browser cookies, files with extensions related to password documents or cryptocurrencies from the victim's Desktop and Documents folders, and any Apple Notes the user has created.
All that data is then sent to another compromised website.
Mac users still need to stay up to date on security
One of the biggest draws of Apple products, including Macs, is their focus on security. But as this social engineering campaign shows, bad actors can sometimes create a believable scenario that can fool someone.
There are several ways you can protect yourself from this very scary malware. First, be careful about the files you download from online sources. While Gatekeeper is a great feature of Macs, it can sometimes be bypassed, like FrigidStealer. If you're worried, there are a few quick websites that will tell you whether a link is safe before you download it.
Another way to stay protected at all times is to use antivirus software. Instead of spending money, you can find some great free antivirus options for your Mac.
Micah SotoYou should read it
- Ransomware appeared to fake Edge browser updates, extorting users with Bitcoin
- The Adobe Flash update may contain malware that digs encrypted money
- Detect new Android malware fake system update to track and steal user information
- 10 typical malware types
- Malware reconciliation design (part 3)
- How to uninstall Chromium Malware with 4 easy steps
- What is Safe Malware? Why is it so dangerous?
- Can a VPN Fight Malware?
May be interested
- How to Remove Malware from a Mac
this wikihow teaches you how to remove malware from your mac. though macs don't get infected by malware quite as often as pc's, they're not immune to malware attacks. if your mac is infected with malware, the easiest way to remove it is to... - How to avoid being fooled by fake Android system notifications?when using a mobile device, you often see system messages randomly popping up, but be cautious because there are lots of malware generated spam phones to display such a message, this is a new types of attacks appear recently.
- How to Unlock Your Browseryour browser may display a 'this browser has been locked' message if your computer has been infected by malware that deceptively poses as the fbi. the malware will instruct users to pay a fee to have their internet browser unlocked, but...
- How many types of malware do you know and how to prevent them?currently, computer criminals use a lot of different malware (malware) to attack the system. here are some of the most common malware types and ways to prevent them.
- Winos 4.0 Malware Warning: Protect Your Computer From Fake NSIS Installers!stealthy winos 4.0 malware variant is using a rogue nsis installer to launch multi-stage attacks.
- Tips to avoid fake Download buttonone of the popular fake ad types is the fake download button, tricking users into the software they are looking for. let's see why they exist, how to detect and avoid these ads.
- Malware on Mac updates the new version'apple' has released a temporary fix to block the widespread trend of fake virus software in the form of a computer protection program on mac.
- Detecting malware infection campaign hidden in fake Windows 11 installerinternational security researchers have just issued an urgent notice about a sophisticated malicious attack campaign targeting windows users worldwide.
- Series of fake Android apps you should remove from your device immediatelyfake android apps aren't just found on shady third-party app stores. sometimes they even make their way to the play store.
- How to distinguish real and fake gadgets in the browserwith the extension system on the browser (externsion) on google chrome and coc coc, users can take advantage of and exploit many other features, which the browser does not support. however, if you accidentally install a fake utility, it will cause the opposite effect, affecting the system as well as the browser. so, how to prevent fake extensions?
Attack the network
- Warning: 1Password users receive fake master password reset emails
- Why is Infostealer malware the biggest new malware concern?
- Security flaw discovered in Bluetooth chip used by a billion devices worldwide
- Understanding Clickjacking: The Browser-Based Attack That Can Bypass Protections to Take Over Accounts
- Here's How Hackers Target Everyday Users With AI Chatbots!
- Extremely dangerous zero-day vulnerability on Chrome: Users update now!
Warning: 1Password users receive fake master password reset emails
Why is Infostealer malware the biggest new malware concern?
Security flaw discovered in Bluetooth chip used by a billion devices worldwide
Understanding Clickjacking: The Browser-Based Attack That Can Bypass Protections to Take Over Accounts
Here's How Hackers Target Everyday Users With AI Chatbots!
Extremely dangerous zero-day vulnerability on Chrome: Users update now!