Security researchers report a new macOS malware called ClickLock that targets users by attempting to steal authentication data. According to reports, the malware repeatedly terminates visible system processes and disrupts normal operation. The behavior is designed to pressure victims into interacting with the macOS login prompt or otherwise re-entering their system login password. Once the password is entered, ClickLock is intended to capture it and use it to access or steal sensitive information tied to the compromised account.
Both outlets describe ClickLock as an information-stealing threat that manipulates macOS behavior by killing processes, then relying on the user to provide their password. The reports do not describe a broader range of payload capabilities beyond the password-trapping and theft mechanism, nor do they specify the delivery method. The overall description emphasizes the malware’s tactic: it uses process termination to interrupt the device and prompt password entry, enabling theft of credentials from affected users.