This malware pretends to be GTA 6 and steals your data on macOS

New malware affects macOS devices. He has a very particular method for luring his victims: presenting himself as GTA 6, the famous and highly anticipated video game.

macOS Malware
Credits: 123RF

If we tell you malwareyou spontaneously think of a computer under Windows or one Android smartphone. In fact, the malicious programs that get people talking most often affect these two operating systems. But believing that competition is not concerned is a myth that dies hard, especially when we talk aboutApple : more and more malware is targeting devices from the bitten apple brand. Some take control remotely while others, more traditional, steal your personal data.

The malware discovered by the Moonlock teams falls into the last category. To encourage victims to install it, it does not hesitate to pretend to be a pirated version of GTA 6, a Rockstar Games video game highly anticipated by fans. In other cases, the malware imitates Notions, productivity software offering note-taking, writing and project management, in short. Whatever disguise you use, it has a method of overriding the protection built into macOS.

Malware imitates GTA 6 game to infect Apple macOS devices

Macs are on board Gatekeeperwhich acts as a anti-virus. It warns you when you try toinstall a potentially dangerous program from the Internet. Here the file DMG (equivalent to ISO of Windows) of the fake GTA 6 or Notions. Except thatjust right click on it then left on Open to ignore it. The hackers know this and display a window explaining it to you. To obtain your system password and therefore access to what it protects like your passwords, the malware tells you that it must install a program “to manage your games“, which requires entering the sesame.

Once installed, “The malware crawls system directories, looking for valuable data such as cookies, form history and login information of popular web browsers including Chrome, Firefox, Brave, Edge, Opera and OperaGX. Additionally, it searches the list of recent servers in FileZilla, databases [de l’application] macOS Keychain Access and Cryptocurrency Wallets“, explains Moonlock. The simplest way to protect yourself is not to never ignore Gatekeeper warningsunless you are 100% sure of the legitimacy of the software you are looking to install.

Source link -101