A new information-stealing malware called Infinity Stealer is actively targeting macOS systems through deceptive ClickFix social engineering campaigns. The malware is built using Python and packaged as an executable with the open-source Nuitka compiler, making it appear as legitimate software to unsuspecting users.
The threat operates by presenting victims with fake browser update notifications or software repair prompts that trick users into downloading and executing the malicious payload. Once installed, Infinity Stealer harvests sensitive data including stored passwords, browser cookies, cryptocurrency wallet information, and system credentials from infected Mac devices.