Shamos, new malware that target Mac users to steal our crypto credentials
There is a new infostealer malware in the wild that target Mac devices. So if you are using Mac just like me, you need to read this kind of attacks. Researcher called it Shamos, which is another variant of the Atomic macOS Stealer (AMOS).
The victims are being lured by the cyber criminals into malvertising or fake GitHub repositories that utilize ClickFix. They are under the guise of installing a fix problems or your Mac or update a software.
And this is how it looks like if you go and search it on the Big G
And this is how they steal from our machine;
1. searches for sensitive files like crypto wallets and other personal information.
2. package it into a zip file
3. and submit it to the attackers command and control
This are the following websites that are compromise:
https://www.crowdstrike.com/en-us/blog/falcon-prevents-cookie-spider-shamos-delivery-macos/
So again, this is a lesson not to download from unknown sources. Although from time to time, I will search for something if I have a problem on my Mac specially if I'm desperate to solve my issues. But it's obvious not a good strategy as I can potentially downloaded his malware. So everyone should be self-aware.
The victims are being lured by the cyber criminals into malvertising or fake GitHub repositories that utilize ClickFix. They are under the guise of installing a fix problems or your Mac or update a software.
And this is how it looks like if you go and search it on the Big G
And this is how they steal from our machine;
1. searches for sensitive files like crypto wallets and other personal information.
2. package it into a zip file
3. and submit it to the attackers command and control
This are the following websites that are compromise:
Code:
mac-safer[.]com
rescue-mac[.]com
https[:]//github[.]com/jeryrymoore/Iterm2
rescue-mac[.]com
https[:]//github[.]com/jeryrymoore/Iterm2
https://www.crowdstrike.com/en-us/blog/falcon-prevents-cookie-spider-shamos-delivery-macos/
So again, this is a lesson not to download from unknown sources. Although from time to time, I will search for something if I have a problem on my Mac specially if I'm desperate to solve my issues. But it's obvious not a good strategy as I can potentially downloaded his malware. So everyone should be self-aware.