Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs
Summary
A new attack campaign, dubbed "ClickFix," is targeting macOS users with a fake Cloudflare-themed CAPTCHA page. This lures victims into downloading a malicious Bash script that ultimately delivers the Python-based "Infiniti Stealer" malware.
IFF Assessment
This attack introduces a new malware strain and infection vector specifically designed to compromise macOS systems, posing a direct threat to users and their data.
Defender Context
Defenders should be aware of this new macOS-targeting campaign that leverages social engineering through fake CAPTCHA pages to deliver stealer malware. Organizations should reinforce user education on identifying phishing attempts and ensure endpoint security solutions are updated to detect and block the Infiniti Stealer and its associated infection chain.