Although Apple’s operating systems are created to accept more or less complex attacks and without the need for tools to solve them, it must be said that there is no perfect software and for this reason, you have to be careful with what you install. Especially on computers, which are the most likely to be able to download and install programs that may contain these undesirable friends that end up stealing information and even money from us, perhaps to save us a few euros. The latest malware discovered and purchasable on Telegram promises to leave your Mac in the dark. It’s called AMOS.
Perhaps you have already heard of AMOS, Atomic macOS Stealer, a new malware discovered by Cyble Research and sold on Telegram to the highest bidder. This new virus promises to wreak havoc on the information contained on Macs. It is capable of stealing include passwords saved in Keychain, system details, files on the desktop and Documents folder, and even the macOS user password. It is specifically designed to work in the environment of popular browsers such as Firefox and Chrome. From browsers, you can effortlessly extract autocomplete fields, passwords, cookies, wallets, and credit card information. Furthermore, you can extract valuable information from some of the most popular crypto wallets, such as Electrum, Binance, Exodus, Atomic and Coinomi.
The malware requires users to install a .dmg file on their machines and authenticate the installation with a user password with a fake system dialog box after installation. Once installed, it looks for sensitive information, which it steals with the system password if necessary, and sends it to a remote server. Keep in mind that this virus may be hidden in an application that you want to buy outside of the App Store. This is why Apple is so insistent that no such thing be done.
Be careful and don’t install anything you don’t know about.
