PulseAugur
EN
LIVE 15:03:55

New CrashStealer malware bypasses macOS Gatekeeper, steals passwords

A new malware strain named CrashStealer has been identified targeting macOS systems, successfully bypassing Apple's Gatekeeper security feature. This infostealer is capable of extracting sensitive data, including passwords from Apple Keychain, browser cookies, session materials, cryptocurrency wallets, and documents. Security researchers noted that CrashStealer's sophisticated delivery method, which mimics a legitimate Apple crash-reporting flow, makes it particularly dangerous for enterprise users by potentially granting attackers access to a wide range of identities and systems. Apple has revoked the malicious developer credentials used by the malware, and security experts advise users to exercise caution with downloads and website visits. AI

IMPACT This malware highlights evolving threats to user credentials and data security, necessitating continuous updates to security protocols and user vigilance.

RANK_REASON This item details a specific piece of malware and its impact on a particular operating system and its security features, fitting the 'tool' category for specific software threats.

Read on Forbes — Innovation →

AI-generated summary · Google Gemini · from 1 sources. How we write summaries →

New CrashStealer malware bypasses macOS Gatekeeper, steals passwords

COVERAGE [1]

  1. Forbes — Innovation TIER_1 English(EN) · Davey Winder, Senior Contributor ·

    New Apple Password Stealer Bypassed MacOS Gatekeeper Without Warning

    This Apple credential theft attack targeted your macOS login password while bypassing the built-in malware protection. Here’s what you need to know about CrashStealer.