Fake Google Chrome, Safari updates are infecting Mac computers with AMOS malware

Fake Google Chrome and Safari updates for macOS are being used to infect Mac computers with the nefarious Atomic Stealer malware, also known as AMOS. Distributed to Mac owners as part of a social engineering campaign, AMOS can steal passwords, private files stored on Mac. Users will need to remain vigilant and possibly use web security tools to protect themselves from malware distributed by social engineering, as malware creators are turning their attention to Mac owners.

Security firm Malwarebytes shared its details Latest version of Nuclear ThiefMalware that is distributed to macOS users through a campaign, ClearFake WordPress websites hijacked To deliver fake browser updates for Chrome and Safari. AMOS was recently distributed via ClearFake for macOS users spotted Firsthand experience, by a security researcher.

ClearFake Chrome Update Malwarebytes ClearFake Chrome

Users shown fake Google Chrome update page
Photo Credit: Malwarebytes

The malware is distributed via hijacked sites that resemble a Google Chrome download page and a fake Safari update page that uses old icons from older macOS versions. However, the rest of the design of the webpage may tempt some users to click and download the malware, while the fake Chrome download seems more credible.

When the user clicks the download button, the malicious .dmg file is downloaded to the Mac computer as a browser installer. Once it is downloaded and opened, the user is asked to enter the administrator password that will run nefarious commands on the device, including stealing passwords from Apple’s Keychain and documents from the Documents folders on the user’s desktop and macOS. , including taking out pictures, wallets and other data.

To stay safe from malware, users need to make sure they use some form of web protection – such as the Safe Browsing setting inside Google Chrome. Doing this may prevent some of these malicious sites from loading altogether.

In the meantime, users should avoid downloading installers for Chrome from unknown websites. The purpose of these social engineering websites is to fool users who may find it difficult to identify which websites are genuine. A good rule of thumb is to check if the address bar shows google.com. On the other hand, Apple does not distribute Safari updates apart from operating system updates, so there is no official download that can be installed by users.


Affiliate links may be automatically generated – see our ethics statement for details.

Follow Gadgets 360 for the latest tech news and reviews x, Facebook, WhatsApp, threads And Google News, For the latest videos on gadgets and tech, subscribe to our Youtube channel,

Redmi K70E officially teased with MediaTek Dimensity 8300 Ultra SoC; Key Specifications, Design Surface Online

(TagstoTranslate) Safari Google Chrome Fake Update Amos Malware Installer Social Engineering Atomic Stealer (T) Google Chrome (T) Safari (T) Chrome (T) Amos Malware (T) Amos (T) Browsers (T) Malware (T) Google Lata Is.

Leave a comment