This Mac malware can steal your credit card data in seconds

By Alex Blake Published March 28, 2023

Despite their reputation for security, Macs can still get viruses, and that’s just been proven by a malicious new Mac malware that can steal your credit card info and send it back to the attacker, ready to be exploited. It’s a reminder to be careful when opening apps from unknown sources.

The malware, dubbed MacStealer, was discovered by Uptycs, a threat research firm. It hoovers up a wide array of your personal data, including the iCloud Keychain password database, credit card data, cryptocurrency wallet credentials, browser cookies, documents, and more. That means there’s a lot that could be at risk if it gains a foothold on your Mac.

A fake password prompt created by the MacStealer macOS malware. — A fake password prompt created by the MacStealer macOS malware. Uptycs / Uptycs

MacStealer begins its attacks using an installer file called weed.dmg. Opening this launches a fake password prompt that harvests your login credentials and uses them to access your sensitive information, which is then zipped up and sent to a server controlled by the hacker. Once that’s done, the stolen data is broadcasted to interested parties on a dedicated Telegram channel.

Recommended Videos

Fortunately, even though MacStealer can extract your Mac’s iCloud Keychain database, it isn’t able to extract the passwords stored within. That’s because iCloud Keychain encrypts any data it stores. As the attackers note, without a user’s master password, getting at those passwords is “almost impossible.”

How to protect yourself

Apple's Craig Federighi speaking about macOS security at WWDC 2022. — Apple

Right now, the malware’s developers are selling it for $100 per build, making it relatively affordable in the world of malware as a service. According to the developer, the low price is due to the malware lacking a user panel and any builder functionality, as well as its current beta status.

Unfortunately, it seems like the threat actor developing MacStealer has some more ideas that they are planning to incorporate into future versions. That includes a cryptocurrency wallet drainer, a user control panel, the ability for customers to generate new builds themselves, and more.

If you want to protect yourself from MacStealer (and other Mac malware), you should keep your Mac up to date with the latest patches from Apple and only allow the installation of apps from trusted sources (such as the official App Store). Installing an antivirus app would also be a good idea, as would using one of the best password managers to keep your sensitive data locked up and encrypted.

Topics

Former Digital Trends Contributor

Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…

Computing

Copilot is Microsoft’s cue to redeem Windows and edge past macOS

The new Surface Laptop 13 on a white table.

There is always going to be a big divide between macOS and Windows. Much of it has to do with the functional disparities that are deeply ingrained at an OS-level. Or if you dive into the heated community debates, you will see it broadly as a battle between seamlessness and flexibility.

Gaming remains the guiding star for Windows adherents. A handful of highly specialized niche industry tools also remain locked to the Microsoft platform. On the other hand, macOS fans swear by the fluid software, plenty of firepower options in the M-series silicon era, and fantastic hardware.

Computing

WWDC may not deliver the macOS magic I’d love to see. Here’s why

macOS Sequoia being introduced by Apple's Craig Federighi at the Worldwide Developers Conference (WWDC) 2024.

Apple’s Worldwide Developers Conference (WWDC) is just two months away, and that means I’m starting to look forward to what could be coming to the Mac at Apple’s big summer show. The problem is that every time I think about WWDC 2025, I can’t shake one feeling: that Apple Intelligence is going to dominate everything at the event.To be fair, I don’t think Apple can do things any other way. As I’ve written about before, this year’s WWDC is make or break for Apple Intelligence. Apple has to not only make sure that its artificial intelligence (AI) platform catches up with rivals like ChatGPT and Google Gemini, but that it actually offers a service that can outdo its competitors in some ways. It needs to convince the public that Apple Intelligence is a worthy contender for their AI needs.And if Apple gets it right, then Apple Intelligence might finally become the system it was always meant to be, with a revamped Siri that possesses incredible contextual awareness and useful additions to key Mac apps that help you in your everyday life.But while I’m really hoping that Apple Intelligence gets the shake-up it so clearly needs, I don’t want the likes of macOS 16 and iOS 19 to miss out as a result. After all, these are the core aspects of Apple fans’ favorite devices. Without meaningful upgrades here, we’re all going to be a little worse off.

Déjà vu

Android

The Oppo Find N5 put a Mac in my pocket, and Apple needs to take note.

An Oppo Find N5 is being used for remote access to a Mac.

It’s no secret that the biggest strength of Apple’s ecosystem is the seamless cross-device connectivity it offers. Yet, despite commanding the world’s biggest mobile-computing duopoly, Apple hasn’t offered two-way control for iPhones and Macs to remotely operate each other. It’s a shame, because given Apple’s security-first approach, it’s in the best spot to offer such a facility.

The situation only changed last year, but only halfway through. With the arrival of iOS 18 and macOS Sequoia, Apple finally introduced iPhone Mirroring. However, there’s still no equivalent that allows you to access and control your Mac desktop on your iPhone. Or an iPad. Some third-party options have existed, though, but haven't really been stellar.