Cybersecurity researchers report a new macOS information-stealing malware dubbed CrashStealer. The malware is designed to harvest sensitive data from compromised Mac systems, including credentials, keychain information, and cryptocurrency wallet data, according to multiple reports. To improve delivery and reduce detection, researchers say CrashStealer uses a notarized dropper that is intended to pass Apple’s Gatekeeper checks. One analysis describes the threat as being implemented in native C++, rather than relying on AppleScript-based droppers or Objective-C wrappers, and Jamf Threat Labs says the component validates a victim’s login password locally as part of its operation. Other coverage characterizes the malware as posing as Apple’s crash-reporting tool, using that impersonation to lure users or make the activity appear legitimate. Overall, sources agree that CrashStealer focuses on credential and wallet theft on macOS and that it incorporates mechanisms—such as notarization and local password handling—to facilitate execution on affected devices.
CrashStealer macOS malware impersonates Apple crash tool to steal credentials
Cybersecurity researchers report a new macOS information-stealing malware dubbed CrashStealer. The malware is designed to harvest sensitive data from compromised Mac systems, including credentials, ke...
- CrashStealer is a macOS information-stealing malware reported by security researchers.
- The malware impersonates Apple’s crash-reporting tool.
- It targets sensitive data, including credentials, keychain data, and cryptocurrency wallet information.
- CrashStealer uses a notarized dropper to help it pass macOS Gatekeeper checks.
- Researchers describe the malware as being implemented in native C++, with local login password validation mentioned.
A new macOS information-stealing malware called CrashStealer pretends to be Apple's crash-reporting tool to steal credentials, keychain data, and crypto wallets. [...]
4 hours agoCybersecurity researchers have flagged a new macOS information stealer called CrashStealer that's capable of harvesting sensitive data from compromised systems. Unlike other information stealers that are built on AppleScript droppers or Objective-C-based wrappers, CrashStealer is implemented in native C++, according to Jamf Threat Labs. "It validates the victim's login password locally before
6 hours ago
Quordle hint and answer guides published for multiple dates and game numbers
TechRadar publishes a series of daily Quordle guides that include both hints and the solution for each game for the spec...
NYT Strands daily guides provide hints and answers for multiple game numbers
TechRadar publishes daily coverage of The New York Times’ word puzzle game Strands, offering readers hints and answer se...
CNET publishes daily NYT Connections and Strands hints and answers
CNET publishes daily updates that provide help for The New York Times’ word games, including Connections and Strands. Th...