North Korean hackers used AppleScript and ClickFix in recent attacks targeting macOS systems at financial organizations.

A ClickFix campaign targeting macOS users delivers an AppleScript-based infostealer that collects credentials and live ...

The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...

North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...

A growing range of native macOS features are being repurposed by attackers to execute code, move laterally and evade ...

PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...

Cybercriminals exploit Obsidian Plugins to deploy PHANTOMPULSE malware, targeting crypto users via LinkedIn and Telegram in ...

Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready ...

An ongoing malware campaign is using Apple's Script Editor instead of the Terminal to inject the Atomic Stealer data thief onto Macs.

ClickFix attacks targeting Mac users now use Script Editor instead of Terminal, a shift that sidesteps Apple's latest protections and streamlines the attack.

Blockchain security firm SlowMist has warned about "MacSync Stealer," a highly destructive new macOS malware campaign ...

Anthropic accidentally leaked some source code for Claude Code, its AI-powered coding assistant. The company said the leak did not include sensitive customer data or credentials. Anthropic recently ...