A MacOS-focused social engineering campaign orchestrated by North Korea-based threat actor Sapphire Sleet has been exposed by ...
OpenAI rolled out their updated Codex app for Mac yesterday and, among other things, they shipped a native computer use tool ...
Microsoft reveals a targeted macOS attack using fake job interviews and AppleScript malware to steal credentials and sensitive data.
North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
North Korean criminals set on stealing Apple users' credentials and cryptocurrency are using a combination of social ...
The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...
PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...
An ongoing malware campaign is using Apple's Script Editor instead of the Terminal to inject the Atomic Stealer data thief onto Macs.
When a victim clicks an “Execute” button, the site calls the applescript:// URL scheme, prompting the browser to open Script Editor with malicious code already filled in. That removes the need for the ...
ClickFix on Macs is evolving yet again and is no longer abusing Terminal.
Jamf Threat Labs has discovered a ClickFix-style macOS attack that abuses the applescript:// URL scheme to launch Script ...
Jamf finds a ClickFix variant that swaps copy-paste Terminal lures for Script Editor execution, tightening delivery of Atomic ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results