MacOS Malware Surge Fueled by Generative AI, Experts Warn

Cybersecurity experts from Moonlock have raised the alarm about a rise in macOS malware driven by generative AI tools like ChatGPT.

According to Moonlock’s 2024 Threat Report, these tools are enabling cybercriminals to bypass technical barriers and create malicious software with unprecedented speed and ease.

Screenshots shared on darknet forums reveal how hackers are leveraging AI to develop macOS-targeted malware step-by-step.

Inexperienced individuals are using these tools to generate code, build malware packages, and even extract sensitive data, highlighting the alarming role AI now plays in empowering cybercrime.

Once considered a relatively secure platform, macOS has seen a surge in malware threats as its market share grew by 60% over the past three years. Malware-as-a-service (MaaS) models, offering affordable and accessible tools, have fueled this rise.

Hackers are increasingly targeting macOS users with sophisticated malware designed to steal sensitive information, including cryptocurrency wallet details and Keychain data.

The cost of acquiring macOS malware has dropped dramatically. Tools that previously cost tens of thousands of dollars are now available for as little as $1,500 per month, noted Moonlock.

This affordability, combined with AI-assisted malware development, has significantly lowered the barrier to entry for cybercriminals. MaaS has transformed the cybercrime landscape, making macOS malware more accessible than ever, says Moonlock.

Offerings like AMOS Stealer exemplify this shift. Launched in 2023, AMOS provides a customizable malware builder, an administrative panel for managing stolen data, and advanced features tailored to macOS systems, as reported by Moonlock.

Moonlock says that threat actors are employing diverse tactics to distribute malware, such as poisoning Google Ads, creating fake GitHub repositories, and impersonating software downloads.

AMOS affiliates coordinate campaigns via forums and Telegram groups, using stolen data to hijack sessions, steal funds, and resell credentials.

Moonlock’s report highlights how macOS malware developers are adopting techniques like advanced obfuscation and dynamic code execution to evade detection.

The next generation of malware is expected to feature unpredictable behavior across samples, further complicating defense efforts.

The key to staying safe, experts emphasize, lies in awareness. Cybercriminals rely heavily on social engineering to trick users.

By avoiding suspicious downloads, scrutinizing unusual prompts, and staying informed about evolving threats, macOS users can better protect themselves in an increasingly hostile digital landscape.