A certain Telegram channel promotes an information stealer targeting macOS, capable of stealing information from cryptocurrency software such as Binance

2023-04-28 22:19:06

Collection

ChainCatcher news, according to Cyble, a Telegram channel is promoting a new type of information-stealing malware called Atomic macOS Stealer (AMOS), which is specifically designed for macOS and can steal various types of information from victims' machines, including keychain passwords, complete system information, files in the desktop and documents folders, and even the macOS password. This stealer is designed to target multiple browsers and can extract autofill, passwords, cookies, wallet, and credit card information. Specifically, AMOS can target cryptocurrency wallets such as Electrum, Binance, Exodus, Atomic, and Coinomi.

Additionally, AMOS provides a management web panel for victims, which includes a MetaMask brute force tool for stealing mnemonic phrases and private keys, an encryption checker, and a dmg installer, after which logs are shared via Telegram. The price for these services is $1000 per month. (source link)

Related tags

Telegram macOS

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.