Mac owners are advised to remain vigilant in 2025, as highlighted by the recently released State of Malware report from Malwarebytes. This annual report sheds light on the evolving landscape of digital threats faced by users of macOS, Windows, and Android systems. Notably, the report indicates a significant rise in macOS infostealers, which are poised to become increasingly prevalent this year.
The evolution of malware, particularly with the incorporation of artificial intelligence, has rendered these threats more sophisticated and dangerous. Infostealers targeting macOS can extract sensitive personal information, such as credit card details and personal data, putting Mac users at a risk level comparable to that of Windows PC users.
Both personal and professional devices are potential targets for these malicious entities. Infostealers are capable of harvesting a wide array of data, including passwords, authentication cookies, and cryptocurrency information. This stolen data can then be exploited by cybercriminals to access sensitive resources, commit identity theft, or orchestrate social engineering attacks. The scale of these threats is expected to grow, fueled by the capabilities of AI.
Among the notorious infostealers are Poseidon and Atomic Stealer, which have the ability to pilfer cryptocurrency from over 160 different wallets, as well as passwords from web browsers and password managers like Bitwarden and KeepassXC. They can even compromise VPN configurations, including those of Fortinet and OpenVPN.
How to protect yourself
Fortunately, the majority of macOS infostealers, like most forms of Mac-based malware, rely on user deception for installation. This means that users themselves are their best line of defense against these threats.
To safeguard your device, it is crucial to exercise caution when downloading software. It is advisable to limit downloads to the Mac App Store and the official websites of trusted developers. Additionally, employing robust Mac antivirus software can provide an extra layer of protection.
Users should also be wary of clicking links from unfamiliar or unexpected sources. If you receive a message, text, or email containing a link, it is prudent to verify the sender’s authenticity before proceeding. Always opt for manual navigation to websites rather than clicking on potentially harmful links.
Enabling two-factor or multi-factor authentication is another effective strategy to bolster security. For enhanced protection, consider utilizing a password manager or a VPN when possible.
As the popularity of MacBooks continues to rise among both businesses and consumers, cybercriminals are shifting their focus from Windows PCs to Macs. However, by practicing good cyber hygiene and remaining vigilant, users can significantly mitigate the risks associated with these emerging threats.
