According to cointelegraph: Mac users are being cautioned about a new strain of malware known as "Cthulhu Stealer," which is specifically designed to steal personal information and target cryptocurrency wallets on macOS systems. This malware is disguised as legitimate software, such as CleanMyMac and Adobe GenP, and tricks users into providing passwords for popular crypto wallets, including MetaMask, Coinbase, and Binance.
Key Points:
Malware Disguise: "Cthulhu Stealer" appears as an Apple disk image (DMG) and uses Apple's command-line tools to prompt users for sensitive information.
Targeted Wallets: The malware specifically targets crypto wallets from MetaMask, Coinbase, Wasabi, Electrum, Atomic, Binance, and Blockchain Wallet.
Data Theft: Once passwords are entered, the malware collects and stores the stolen data, including system information like IP addresses and OS versions.
Rented Out: The malware was reportedly rented out to affiliates for $500 per month, with profits shared among those deploying it.
Increased macOS Threats: This development highlights the growing threat of malware on macOS, a system once considered more secure.
The warning comes as Apple acknowledges the rising threat of macOS-targeted malware, leading to updates in its security protocols to protect users.