New Delhi: Cybersecurity researchers have found a brand new malware marketing campaign that targets Mac customers by means of malicious adverts for Google searches, tricking them into putting in the “Atomic Stealer (AMOS)” malware, a brand new report has mentioned.
According to the cybersecurity firm Malwarebytes, AMOS is being delivered to unsuspecting searchers through a Google advert scheme.
“AMOS was first advertised in April 2023 as a stealer for Mac OS with a strong focus on crypto assets, capable of harvesting passwords from browsers and Apple’s keychain, as well as featuring a file grabber. The developer has been actively working on the project, releasing a new version at the end of June,” the researchers mentioned.
Criminals who buy the toolkit distribute the malware primarily by means of cracked software program downloads, however additionally they impersonate professional web sites and use adverts on search engines like google corresponding to Google to lure victims in.
According to the report, customers who wish to obtain a brand new programme naturally go to Google and seek for it. Threat actors are buying ads that appear like well-known manufacturers and tricking victims into visiting their web site as if it had been the official one.
Once the person clicks the hyperlink, they’re introduced with a normal-looking web page. The attackers create a near-perfect clone of the web site customers anticipate, in order that they click on by means of and obtain the software program.
After opening the file, a faux immediate for the system password seems repeatedly till the person relents and enters their password. It then extracts as a lot data as it might probably from the person’s Keychain, file system, and crypto wallets and sends it to the malware’s operator, the report defined.