Windows has always been a favorite target for hackers, but it seems that they have now discovered how they can actively focus Macs. We have seen an alarming increase Malware that affects Mac computersStealing personal data and cryptocurrency.
Threat actors now use AI together with extensive social engineering tricks to focus on Apple users, and the company does not seem to do much about it. In the meantime, a cyber security report has identified a new Mac malware called Frigidstealer, which spreads through fake browser updates and compromised websites.
Picture of a Mac -laptop (Kurt “Cyberguy” Knutsson)
What you need to know
A new malware tribe called Frigidstealer focuses on macOS users as part of a wider campaign with fake -updated scams, cyber security firm proofpoint reported. Frigidstealer spreads through compromised websites that display the update of the misleading browser. When users click on these prompts, they unconsciously download a malicious DMG file. Once performed, the malware asks for the user’s system password to obtain increased privileges before sensitive information is stolen, including browser cookies, password-related files, cryptocurrency data and Apple Notes.
Proofpoint identified two new threat actors behind the operation: TA2726, which functions as a traffic distribution service provider, and TA2727, who supplies Frigidstealer to Mac users. The campaign also implements malware on Windows and Android devices, which indicates a multi-platform attack strategy. The cyber security company with great confidence that TA2726 also distributed traffic for other malware campaigns. Some operations that were previously attributed to TA569 have now been re -classified under TA2726 and TA2727.
TA569 – also known as Mostard Tempest, Gold Prelude and Purple Vallhund – is linked to the Cybercrime Syndicate Evilcorp and was first identified in 2022.
Proofpoint has also assessed with moderate trust that TA2727 is buying traffic through online forums to distribute malware that can be itself or that of potential customers.
“These are traffic vendors and malware distributors and are observed in several web-based attack chains such as compromised website campaigns,” the report explained, “including those with fake artificial theme with update theme.”
Fake update Lure Leving Frigidstealer via Safari, Links and Chrome, Right (Proofpoint) (Kurt “Cyberguy” Knutsson)
Best antivirus for Mac, PC, iPhones, Androids – Cyberguy Picks
Infoestealers are increasing
Threat Intelligence Platform That was reported That Hackers use Lumma, together with Stealc, Redline and other infontal players, infected by 4.3 million machines in 2024, which endangers an estimated 330 million login data. Security researchers also saw 3.9 billion references circulating in lists that seem to come from Infeleallogboeken.
Infeler Malware is expected to remain a persistent threat in 2025. With malware-as-a-service platforms that are on the rise and infute dealers are more advanced, cyber criminals will probably continue to trust them as a primary tool for stealing reference and infiltrating systems.
A man who works on his Mac -laptop (Kurt “Cyberguy” Knutsson)
From Tiktok to Problems: how your online data can be armed against you
4 ways to stay safe against Infontal Malware
While Infeler Malware continues to grow in refinement, it is more important than ever to take proactive steps to protect your data. Here are four important ways to protect yourself against threats such as Frigidstealer, Lumma and other malware for stealing references.
1) Beware of fake software -Updates: One of the most common infection methods is through the update of the misleading browser. Never download updates from pop-ups or random websites. Instead, always work your software from official sources, such as the App Store or the official website of the application. When in doubt, view my Detailed manual for maintaining your device and software updated.
2) Switch on two-factor authentication (2FA): Even if your references have been stolen, 2FA Adds an additional layer of security by requiring a secondary verification method, such as a one -off code that has been sent to your phone. Use 2FA for all critical accounts, including e -mail, banking and cloud services.
3) Use a password manager: Many Infoestealers focus on saved passwords in web browsers. Instead of trusting your browser to save references, use a dedicated Password manager. Get more details about my Best Expert-Reviewed Password managers from 2025 here.
4) Be careful with downloads and links. Use a strong antivirus: Infeler Malware often spreads through malignant downloads, phishing -e -mails and fake websites. Avoid the downloading of software or files from non-vested sources and always check links before clicking on it. Attackers disguise malware such as legitimate software, game cheats or cracked applications, so it’s best to stick to official websites and app stores for downloads.
The best way to protect yourself against malignant links that install malware, which may have access to your private information, is to have strong antivirus software installed on all your devices. This protection can also warn you about phishing -e -mails and ransomware -scam, so that your personal information and digital assets are kept securely. Buy my choices for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.
This is what ruthless hackers have stolen from 110 million AT&T customers
Kurt’s most important collection meal
As the digital landscape evolves, also the annoying threats that we are confronted with. Frigidstealer is simply the newest reminder that no platform, not even macOS, is immune to the growing refinement of cyber criminals. With information gallers such as Lumma, Stealc and Redline, millions of devices and billions of references in 2024 already endanger the rise of AI-driven attacks and social engineering scams provides a challenging path.
Do you think that companies like Apple should do more to combat these evolving threats? Let us know by writing us Cyberguy.com/contact.
For more of my technical tips and security warnings, subscribe to my free Cyberguy report newsletter by going to Cyberguy.com/newsletter.
Ask Kurt a question or let us know what stories you want.
Follow Kurt on his social channels:
Answers to the most stretched Cyberguy questions:
New from Kurt:
Copyright 2025 cyberguy.com. All rights reserved.
