ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

March 16, 2026

Three different ClickFix campaigns have been found to act as a delivery vector for the deployment of a macOS information stealer called MacSync. "Unlike traditional exploit-based attacks, this method relies entirely on user interaction – usually in the form of copying and executing commands – making it particularly effective against users who may not appreciate the implications of running

from The Hacker News https://ift.tt/93A6r4s
via Cyber Security

Bitcoin Mining

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

Popular Feeds

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Featured News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

Random Posts

Popular Posts

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Bitcoin Mining

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

You may like these posts

Share

Popular Feeds

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Featured News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

Random Posts

Popular Posts

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited