https://www.jamf.com/blog/macsync-stealer-evolution-code-signed-swift-malware-analysis/
Jamf Threat Labs discovers MacSync Stealer's evolution to code-signed, notarized Swift applications that silently download and execute payloads, bypassing...
macsyncstealerevolvesclickfixcode
https://thehackernews.com/2025/12/new-macsync-macos-stealer-uses-signed.html
A new MacSync macOS stealer spreads via a signed, notarized fake installer, bypassing Apple Gatekeeper before Apple revoked the certificate.
newmacsyncmacosstealeruses
https://moonlock.com/macc-stealer-macsync-backdoor
Sep 12, 2025 - At a time when macOS-targeting malware is on the rise, the MacSync stealer presents a new, unique threat. Here's everything you need to know.
macstealerevolvesbackdoor
https://www.bleepingcomputer.com/news/security/new-macsync-malware-dropper-evades-macos-gatekeeper-checks/
The latest variant of the MacSync information stealer targeting macOS systems is delivered through a digitally signed, notarized Swift application.
newmacsyncmalwaredroppermacos
https://www.csoonline.com/article/4111179/macsync-stealer-malware-bypasses-macos-gatekeeper-security-warnings.html
Dec 23, 2025 - A new infostealer variant targets Apple user enterprise credentials.
cso onlinemacsyncstealermalwaremacos
https://9to5mac.com/2025/12/22/macsync-stealer-variant-finds-a-way-to-bypass-apple-malware-protections/
Dec 22, 2025 - We’ve recently seen how ChatGPT was used to trick Mac users into installing MacStealer, and now a different tactic has...
macsyncstealervariantapplemalware