Atomic Stealer malware strikes macOS via fake browser updates

The ClearFake malware campaign, which previously targeted Windows users with fake Chrome updates, has expanded to macOS, targeting users with an information-stealing malware known as Atomic Stealer. ClearFake lures users into downloading DMG payloads that resemble authentic updates for Google Chrome and Apple’s Safari browser. In addition, the campaign uses an innovative technique called “EtherHiding” to conceal its malicious scripts in blockchain contracts.