Beware Mac Users: Fake Updates Could Steal Your Passwords & Files!
Malware threats continue to wreak havoc, and this time they’re targeting Mac users. The threat comes from malware called Atomic macOS Stealer or AMOS, which can steal iCloud Keychain passwords, credit card numbers stored on the device, and other important files. The biggest concern with this malware is that attackers are driving this through fake updates to Safari and Chrome browsers.
People are constantly waiting for possible updates from developers that are introduced to protect devices from potential security threats, but in this case, the update itself is a threat that people should avoid installing on their Macs.
We have seen this kind of attack on Windows users in the past, but now even Mac users are under threat and need to be extra careful when installing updates from third-party sources.
Researchers at Malwarebytes have been granted the latest information, which they call ClearFake. Software updates are usually offered through official channels, but it is easy to find that some people fall into the trap of fake updates that can pop up on their screen that looks like the original page. If you’re on a Mac, the researchers note what the Safari update page looks and sounds like:
And if you’ve been using Chrome on a MacBook, the fake update page is as follows:
How to prevent AMOS malware attack
– Always install updates from Apple and Google official channels for Safari and Chrome macOS updates. Do not click on any link provided by unknown sources and install updates from them.
– If any app asks you to unblock some privacy features, avoid installing them.
– If you want to install genuine third-party apps on macOS, be sure to check its credentials and the company behind the app to make sure it’s genuine.
Malware attacks are usually avoidable as long as people know how to monitor such intrusions and follow these guidelines to ensure they never fall prey.