Threats Tagged 'atomic stealer'

View all threats tagged with 'atomic stealer'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Type

Severity

Country

Tag

Time Range

Sort By

Active filters (1):Tag: atomic stealer

Threats Tagged 'atomic stealer'

Click on any threat for detailed analysis and mitigation recommendations


Fake CleanMyMac site installs SHub Stealer and backdoors crypto wallets 0 A deceptive website impersonating CleanMyMac tricks users into installing SHub Stealer, a sophisticated macOS malware. The malware steals sensitive data, including passwords, browser data, cryptocurrency wallets, and Telegram sessions. It can also modify wallet apps to steal recovery phrases. The attack begins with users pasting a command into Terminal, which downloads and executes a malicious script. The malware performs extensive data collection from various browsers and wallet applications, and installs persistent backdoors in certain crypto wallet apps. SHub Stealer is part of a growing family of AppleScript-based macOS infostealers, demonstrating increasing sophistication in targeting Mac users. MediumMalwareUnited StatesCanadaUnited Kingdom+7#browser data theft #clickfix #applescript Join the discussion	AlienVault OTX General	03/09/2026, 10:15:41 UTC Added: 03/09/2026, 10:36:50 UTC
Crypto Wallets Continue to be Drained in Elaborate Social Media Scam 0 An ongoing social engineering campaign is targeting cryptocurrency users through fake startup companies impersonating AI, gaming, and Web3 firms. The scammers create elaborate facades using spoofed social media accounts and project documentation on platforms like Notion and GitHub. They contact victims offering to pay them to test software, which is actually malware designed to steal crypto wallet contents. The campaign uses both Windows and macOS malware, including information stealers like Atomic Stealer. The threat actors go to great lengths to appear legitimate, even creating fake conference photos and merchandise stores. Multiple fake company identities have been identified as part of this campaign. MediumMalwareUnited KingdomGermanyFrance+4#impersonation #social engineering #malware Join the discussion	AlienVault OTX General	07/16/2025, 16:10:37 UTC Added: 07/16/2025, 19:16:11 UTC