New macOS stealer campaign uses Script Editor in ClickFix attack

Wednesday, April 8, 2026 at 06:55 PM UTC·Source: BleepingComputer

Updated: Wednesday, April 8, 2026 at 06:56 PM UTC

Executive Summary

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. [...]

Analysis

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. [...]

Source Attribution

Originally published by BleepingComputer on Apr 8, 2026.

Related Threats

LOWMalware

U.S. authorities conduct cyber operations as part of global crackdown on DDoS-for-hire services

ANCHORAGE, Alaska – The U.S. Justice Department today announced court-authorized actions taken to disrupt some of the world’s leading Distributed Denial of Service (DDoS) Internet of Things (IoT) botnet services. U.S. authorities continue to focus resources on charging DDoS botnet administrators and seizing infrastructure, like websites, that allow paying users to launch powerful DDoS attacks....

Apr 17, 2026DataBreaches.net

MEDIUMMalware

ZionSiphon Malware Targets ICS in Water Facilities

The malware is configured to operate on systems associated with Israeli water treatment and desalination plants. The post ZionSiphon Malware Targets ICS in Water Facilities appeared first on SecurityWeek .

Apr 17, 2026SecurityWeek

MEDIUMMalware

ZionSiphon malware designed to sabotage water treatment systems

A new malware called ZionSiphon, specifically designed for operational technology, is targeting water treatment and desalination environments to sabotage their operations. [...]

Apr 16, 2026BleepingComputer