Criminals are taking advantage of macOS users’ need to resolve technical issues to get them to infect their machines with the Shamos infostealer, Crowdstrike researchers have warned. To prevent macOS security features from blocking the installation, the malware peddlers are using the so-called ClickFix technique, which relies on users running malicious commands. The Shamos malware delivery campaign For the campaign, which unfolded between June and August 2025, the cyber crooks created fraudulent macOS help websites … More
The post Fake macOS help sites push Shamos infostealer via ClickFix technique appeared first on Help Net Security.
