Apple has long positioned its devices as bastions of security, famously promoting the mantra “Privacy. That’s Apple.” However, as the technological landscape evolves, even the most trusted products are not impervious to the growing threat of cybercrime. Recent reports indicate that Mac users must adopt a heightened sense of vigilance this year, as advancements in artificial intelligence are enabling hackers to infiltrate systems once thought secure.
The rise of cyberattacks on Apple devices
Historically, Mac malware was primarily characterized by annoying adware and browser hijackers, posing more of a nuisance than a serious threat. This perception is rapidly changing. According to insights from Malwarebytes, a new wave of sophisticated information stealers is emerging, targeting sensitive data such as passwords, authentication cookies, credit card information, and even cryptocurrency holdings.
This shift began in mid-2023 with the introduction of Atomic Stealer, or AMOS, a malware variant that resembles threats typically associated with Windows systems rather than Macs. AMOS proved not only effective but also user-friendly, marketed as a service for ,000 per month, complete with a sleek web-based control panel. Its success paved the way for even more formidable variants.
Among these, Poseidon emerged in mid-2024, swiftly claiming dominance as the leading Mac information stealer, responsible for 70% of infections. This malware can drain over 160 different cryptocurrency wallets, pilfer passwords from browsers and password managers, and even capture VPN credentials. Concurrently, cybercriminals have intensified their use of malvertising, deploying deceptive ads on platforms like Google and Bing to lure users into downloading malware disguised as legitimate software. These targeted campaigns allow attackers to serve fake downloads tailored to Mac users based on their search behaviors, and with AI now playing a role in executing these attacks, the scale of such threats is likely to escalate.
Things are worse for Android users
While the situation for Mac users is concerning, Android users face an even graver scenario. Phishing attacks on this platform have surged alarmingly, with thousands of malicious applications designed to steal credentials and circumvent security measures. In 2024 alone, researchers identified 22,800 apps capable of phishing, alongside 3,900 that can read one-time passwords (OTPs) from notification bars and 5,200 that extract OTPs from SMS messages. These figures underscore the widespread and effective nature of Android phishing malware.
Similar to phishing emails, these malicious apps deceive users into surrendering their usernames, passwords, and two-factor authentication codes. Once acquired, these credentials can be exploited for fraud, identity theft, or further cyberattacks. Phishing apps often require minimal coding and permissions, making them easier to infiltrate app stores, including Google Play. Many mimic legitimate software, from games to utilities, while others masquerade as cracked versions of popular applications. Some remain dormant to evade detection before launching their attacks, while others utilize ad functionalities to redirect users to phishing sites, complicating the tracing of malicious code.
Although Google Play Protect offers built-in malware protection for Android devices, it is essential to recognize that it may not be entirely foolproof. Historically, it has struggled to eliminate all known malware from Android systems.
5 tips to protect your devices from malware
To safeguard against the latest malware threats, including notorious information stealers, consider the following essential tips:
- Have strong antivirus software: Installing robust antivirus software on all devices is crucial for protecting against malicious links and potential data breaches. This software can also alert users to phishing emails and ransomware scams.
- Be cautious with downloads and links: Only download software from reputable sources, such as the Mac App Store or Google Play Store. Exercise caution with unsolicited emails or messages that prompt downloads, as they often disguise phishing attempts.
- Keep your software updated: Regularly update macOS, Android, and all applications. Both Apple and Android frequently release security patches to address vulnerabilities. Enabling automatic updates can help maintain security without manual checks.
- Use strong and unique passwords: Employ strong, unique passwords for all accounts and devices. A password manager can assist in generating and storing complex passwords, reducing the risk of security breaches.
- Use two-factor authentication (2FA): Enable 2FA for critical accounts, including Apple ID and financial services, adding an extra layer of protection even if passwords are compromised.
