MacStealer: New macOS-based Stealer Malware Identified
Uptycs has identified a new macOS-based stealer malware, MacStealer, which is distributed via a .DMG file and controls its operations over Telegram. The stealer can extract documents, cookies from a victim's browser, and login information. It affects Catalina and subsequent macOS versions riding on Intel M1 and M2 CPUs. The Mach-O file is compiled from Python code and the bad actor uses a fake password prompt to gather passwords. The stealer then ZIPs up the data and sends it to C2 via a POST request using a Python User-Agent request. Malware: MacStealer [View Article](https://www.uptycs.com/blog/macstealer-command-and-control-c2-malware)