Dubbed the “ClearFake” scam, the cybernetic Trojan horse has been targeting Windows systems since July but just recently started targeting Mac users as well, according to a recent Malwarebytes report that confirmed its existence, Bleeping Computer reported.

“The #Clearfake campaign which is abusing binance blockchain is not limited to Windows #malware,” warned cyberthreat expert Ankit Anubhav in a November 17 post.

This sinister cyber phishing scheme works by bombarding both phone and MacBook users with counterfeit Chrome updates that appear on compromised sites via JavaScript injections.

When they click the prompt, their system is infected with Atomic Stealer, a malware system that can pilfer passwords to important accounts, as well as photos, documents and video files.

If that weren’t sophisticated enough, this system has the ability to hack data from more than 50 cryptocurrency extensions, plus keychain passwords.

This ill-gotten info can then be used for a variety of nefarious purposes from extortion to identity theft.

According to the aforementioned report, this malware is particularly insidious as it masquerades as both Safari and Chrome updates.

And while ClearFake’s existence has been known since April 2023, it reportedly flies under the radar of 50 per cent of antivirus engines on cybersecurity site VirusTotal.

In order to prevent one’s computer from contracting Atomic Stealer malware, experts say Mac users should refrain from downloading browser updates from third-party sites and pop-ups.

More Coverage

Shock number reveals Aussie scam problem

Nathan Schmidt

$100m push to protect millions of Aussies

Elizabeth Pike

As they point out, Safari browser updates are only distributed through macOS software updates.

Tech experts also urge Apple fans to strengthen their security systems by downloading the latest antiviral software — but only from a reputable site, of course.

This article originally appeared on the New York Post and was reproduced with permission.