Security · 1h ago
ClickLock malware tricks macOS users into revealing passwords
A new macOS stealer called ClickLock uses social engineering to trick users into entering their passwords, then exfiltrates data from browsers, crypto wallets, and more. It requires no exploits or elevated access, relying on user compliance. The malware targets credentials, cookies, and files, posing a real threat to Apple users.
Meridian48 take
ClickLock's low-tech approach highlights that macOS security is only as strong as the user's willingness to say no to a persistent dialog box.
Read the full reporting
'macOS users may face real, sophisticated threats that require neither exploits nor any elevated access to succeed': ClickLock Stealer tries to trick Apple users into revealing their passwords →
TechRadar
macos-malwarepassword-stealer