A nasty new Mac malware that can collect your credit card information and send it back to the attacker, ready to be exploited, has just demonstrated that Macs, despite their reputation for security, can still catch viruses. It serves as a warning to be cautious while installing apps from unidentified sources.
The malware, known as MacStealer, was found by the threat research company Uptycs. It collects a variety of your personal information, such as the iCloud Keychain password database, credit card information, login information for cryptocurrency wallets, browser cookies, documents, and more. If it manages to take hold on your Mac, a lot could be put at risk.
An installer file called weed. dmg is used by MacStealer to launch its attacks. When you open it, a phone password prompt appears, capturing your login details and allowing the hacker to access your private data. This data is then compressed and delivered to the hacker’s server. Following that, the stolen information is made available to interested parties on a specific Telegram channel.
Thankfully, while MacStealer can access the iCloud Keychain database on your Mac, it is unable to access the passwords kept inside. That’s because any data that iCloud Keychain saves is encrypted. Without a user’s master password, the attackers warn, accessing those passwords is “nearly impossible.”
How to protect yourself
The malware is currently being sold by its creators for $100 per build, which is a fair price in the realm of malware as a service. The malware’s lack of a user interface and any builder capability, as well as its present beta phase, are to blame for the low pricing, claims the developer.
Regrettably, it appears that the threat actor that is creating MacStealer has some other ideas that they intend to include in further iterations. This include tools like a drainer for cryptocurrency wallets, a user control panel, a feature that lets users create fresh builds themselves, and more.
You should keep your Mac updated with the most recent Apple fixes and only permit the installation of software from reputable sources if you wish to safeguard yourself against MacStealer (and other Mac viruses) (such as the official App Store). A excellent option would be to install an antivirus programmed and use one of the top password managers to keep your vital information secured and encrypted.