A malicious application called AMOS, full name Atomic Stealer, has been targeting MacOS users for a long time. This malware is used to leak data and files from infected systems. AMOS then starts collecting information from various applications.
This information includes passwords, credit card information, verification codes, every kind of data imaginable. Hackers who want to infect AMOS on more devices are now using fake browser updates.
Chrome, Safari, Edge… All Browsers Are at Risk
In the new attack wave called ClearFake, hackers use websites they have previously managed to infiltrate. According to the attack discovered by security researcher Ankit Anubhav on November 17, when these sites are accessed, a warning that an update is required appears on the screen. These update pages appear to be no different from the original ones, and even include different language options for the warning.
When users press the update button without suspecting anything, they open their computers to malware. By following the instructions on how to run the downloaded files, unsuspecting users run the file with their own hands. As soon as this process is performed, AMOS asks for the password of the administrator account. After obtaining this password, the software starts running on your device, in the simplest terms. It collects information such as identity information, location, e-mails, files, passwords and card information.
Windows devices can similarly be exposed to AMOS attacks. Experts say that users should be very careful with these methods. They emphasize that web protection tools can be used to prevent it.
23591
