Apple users are warned about the emergence of a new malware called "Cthulhu stealer," which targets users to steal their personal information and target crypto wallets. This news has sent shockwaves through the Apple world, which prides itself for years as an impenetrable fortress when it comes to software security.
The "Cthulhu Stealer" often disguises itself as the Apple disk image and acts like legitimate software like CleanMyMac and Adobe GenP.
After the user opens the file, the malware will use the macOS command-line tool to prompt the user for their passwords, including those for popular crypto wallets like Ethereum, MetaMask, Coinbase, Wasabi, Electrum, Atomic, Binance, and Blockchain Wallet.
Once they get their hands on your data, the stolen data will be stored in text files, and the system's details, such as IP address and operating system version , are also captured.
In essence, the primary goal of the "Cthulhu Stealer" is to steal credential and cryptocurrency wallets, which, in a sense, is strikingly similar to the "Atomic Stealer" malware, leading experts to believe that the "Cthulhu Stealer" could be a modified version of the "Atomic Stealer".
#AtomicStealer has implemented a basic check for the user "run" to prevent analysis in @RecordedFuture / @hatching_io triage 🤣 When executing as "run", rather than the password prompt, you are greeted with an endearing message from the devs "idi nahui dolbaeb." pic.twitter.com/cTxRWdjBGW<br/>— Bex (@4n6Bexaminer) August 25, 2024<br/> a
It is rumoured that the malware is currently being rented out to affiliates on Telegram messenger for a price of $5000 per month, with the main developer sharing profits from successful deployments.
But it seems that the scammers behind the malware are said to be no longer active, following disputes over payments that have led to accusations of an exit scam by affiliates.
Since then, Apple has acknowledged the threat of these malware systems, and they have announced that they will be releasing a new update to its macOS to enhance security measures. But as the malware landscape evolves, Mac users must remain vigilant to protect their digital assets.