The Hacker News

New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper

A new MacSync macOS stealer spreads via a signed, notarized fake installer, bypassing Apple Gatekeeper before Apple revoked ...

Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell ...
Cryptopolitan

User assets already stolen as new MacSync variant bypasses macOS security

The MacSync Stealer has transitioned from a ClickFix variant to a more sophisticated code-signed malware capable of bypassing traditional macOS ...

Malware bypassed macOS Gatekeeper by abusing Apple's notarization proccess

A new variant of the MacSync Stealer uses a code-signed Swift application to get around Apple's macOS Gatekeeper protections.