Security · 6h ago
CrashStealer macOS Malware Bypasses Gatekeeper with Notarized Dropper
Researchers at Jamf Threat Labs discovered CrashStealer, a new macOS information stealer written in native C++. It uses a notarized dropper to pass Apple's Gatekeeper security checks. The malware validates the victim's login password locally before stealing sensitive data.
Meridian48 take
The notarized dropper shows that Apple's app notarization process can be weaponized, underscoring the need for additional security layers beyond Gatekeeper.
Read the full reporting
CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks →
The Hacker News
macos-malwareinformation-stealer