MILLIONS of Apple customers have been warned over a “bank-raiding” virus that can evade nearly all security checks.
Cyber criminals are reportedly using the information-stealing malware to target MacOS users.
GettyApple customers have been warned over a “bank-raiding” virus[/caption]
And it is is being distributed to cyber criminals through private Telegram channels for $1,000 (£803) a month, Bleeping Computer reports.
Known as “Atomic” or “AMOS”, buyers receive a malware that targets MacOS systems to steal a whole host of information,
This includes keychain passwords, cookies, files from local systems, and other data that could potentially leave victims in a serious pickle.
It also targets more than 50 cryptocurrency extensions to steal credentials.
Atomic can snatch can snatch credit card information lurking in browsers including Google Chrome, Microsoft Edge, Mozilla Firefox, Yandex, Opera, and Vivaldi.
Once Atomic finds its way into a victim’s Mac, it can display a bogus password window, prompting users to type in their system passwords.
Attackers can then gain access to the quarry’s macOS machine and wreak havoc.
The malware seems somewhat advanced as criminals who buy it get access to a ready-to-use web panel to manage victims, a MetaMask brute-forcer, a cryptocurrency checker, and a DMG installer.
Worryingly, they can also receive stolen logs on Telegram.
Fortunately, you won’t find Atomic lurking inside any official macOS services.
It’s up to the malicious buyers to distribute Atomic via phishing emails, laced torrents and social media posts.
Some even leverage the power of SEO to target Google searchers, baiting them to download infected applications masquerading as legitimate software.
If you are worried, you can remove your credit-card information from Google Chrome by navigating to Settings > Autofill > Payment Methods.
Then, tap on the three-dotted icons next to your credit cards and click on “Turn off virtual card.”
Apple have been contacted for comment.