New malicious clipboard clone raises serious security concerns for Mac users
AI-summarised brief · reviewed before publication
Macworld reports that Jamf Threat Labs identified PamStealer, a new macOS malware targeting users of the Maccy clipboard manager through fake websites distributing malicious AppleScript files. The sophisticated malware uses a quiet execution chain with JXA and Rust to steal login passwords via macOS Pluggable Authentication Modules, making detection difficult. Users are advised to only download Maccy from the official maccy.app website or GitHub and avoid suspicious links. Jamf Threat Labs has issued a report on the new malware, warning users of the third-party clipboard manager Maccy of the potential threat.
💡 Why It Matters
- · The evolution of PamStealer highlights the growing sophistication of macOS malware, with attackers adopting quieter execution chains and native implementations that evade traditional detection methods.
- · This development underscores the importance of vigilance and caution when downloading software from third-party websites, even if they appear legitimate.