Spread through Google ads masquerading as links for the Arc web browser, Poseidon redirects users to a deceptive site where they download a trojan instead. The malware, named OSX.RodStealer, is thought to be developed by an individual in underground forums, aiming to compete with the notorious AtomicStealer malware.
The malware includes functionalities for file grabbing, extracting crypto wallet information, stealing data from password managers like Bitwarden and KeePassXC, and collecting browser data. This highlights a growing trend of info-stealing trojans targeting MacOS, with threats extending to account credentials, crypto wallets, and VPN configurations.
Malwarebytes recommends vigilance when downloading applications, advising users to avoid suspicious sites and unsigned installers. Regular caution can help prevent infections and mitigate the risk posed by this active malware threat.
Source: SC Media
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.