Shareware campaign jumps from Windows to macOS
Cybersecurity firm LayerX has spotted a scareware campaign jumping from Windows to macOS after new browser protections on Windows shut it down.
For the past few months, LayerX has been monitoring a sophisticated phishing campaign that initially targeted Windows users by masquerading as Microsoft security alerts. The campaign’s goal was to steal user credentials by employing deceptive tactics that made victims believe their computers were compromised. Now, with new security features rolled out by Microsoft, Chrome, and Firefox, the attackers have shifted their focus to Mac users, notes the cybersecurity firm.
Attackers had been using compromised websites to serve fake Microsoft security alerts, tricking users into entering their credentials. After Chrome, Firefox and Edge introduced anti-scareware measures, these attacks dropped by 90%. Within two weeks, LayerX detected nearly identical phishing tactics repurposed for Mac users on Safari.
This shift suggests macOS users, particularly in enterprise environments, may now be a primary target. LayerX warns that attackers are likely to continue adapting their campaign as security measures evolve.
Jaron Bradley, director of Jamf Threat Labs, advises users to avoid entering credentials on unofficial websites and to be wary of warnings urging them to call a number to resolve a security threat.
“These phishing attacks have been successful by scaring users into providing their credentials. Blinking windows and pop-ups with intimidating messages create a sense of urgency, pushing individuals to resolve the fake issue quickly, leading them to enter their credentials,” Bradley says. “After Windows implemented mitigations for this tactic, it’s no surprise that attackers turned their attention to other popular platforms that haven’t faced the same level of pressure to defend against such attacks.
He adds that users should never enter their iCloud credentials outside of the official Apple website. They should also be cautious when encountering flashing warnings that prompt them to call a phone number to resolve a supposed threat.
“These calls often lead to scammers who promise to fix a fake issue in exchange for a fee and credit card information,” Bradley says.
I hope you’ll help support Apple World Today by becoming a patron. Patreon pricing ranges from $2 to $10 a month. Thanks in advance for your support.
The post Shareware campaign jumps from Windows to macOS appeared first on MacTech.com.
