Security Bite: ClickFix malware authors already bypassing Apple’s new Terminal paste warning

Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe ...

North Korea targets macOS users in latest heist

North Korean criminals set on stealing Apple users' credentials and cryptocurrency are using a combination of social ...
Microsoft

Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise

The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...
Dark Reading

North Korea Uses ClickFix to Target macOS Users' Data

North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
The Hacker News

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...
Blockonomi

Cybercriminals Weaponize Obsidian Plugins in Sophisticated Crypto Malware Campaign

Cybercriminals exploit Obsidian Plugins to deploy PHANTOMPULSE malware, targeting crypto users via LinkedIn and Telegram in ...

"ClickFix" attacks on macOS now also via Script Editor

An ongoing malware campaign is using Apple's Script Editor instead of the Terminal to inject the Atomic Stealer data thief onto Macs.
TidBITS

#1799: OS 26.4.1 fixes iCloud sync, 49-day networking bug overblown, Anthropic’s Mythos and Project Glasswing, vertical tabs in Chrome

Adam Engst 9 April 2026 6 comments Apple Releases OS 26.4.1 to Fix CloudKit Syncing Bug. If iCloud syncing has been unreliable since you updated to iOS 26.4, relief has arrived ...