Threat Actor Selling New Atomic macOS (AMOS) Stealer on Telegram
Cyble Research and Intelligence Labs (CRIL) discovered a new information-stealing malware called Atomic macOS Stealer (AMOS) being advertised on a Telegram channel. The malware targets macOS users and can steal sensitive information such as keychain passwords, system information, files from the desktop and documents folder, and the macOS password. AMOS can also target multiple browsers to extract auto-fills, passwords, cookies, wallets, and credit card information. The threat actor behind AMOS is constantly improving the malware and adding new capabilities. The malware can be installed by exploiting vulnerabilities or hosting on phishing websites, and the stolen data can be used for espionage or financial gain. Malware: Atomic, RustBucket, DazzleSpy, MacStealer [View Article](https://blog.cyble.com/2023/04/26/threat-actor-selling-new-atomic-macos-amos-stealer-on-telegram/)