Fake Mac Clipboard App Spreads Password-Stealing Malware

A new Mac infostealer called PamStealer is impersonating the open-source Maccy clipboard manager. The malware is designed to steal passwords and other sensitive data from infected devices.

Fake Mac Clipboard App Spreads Password-Stealing Malware

What happened?

A new Mac infostealer called PamStealer is impersonating the open-source Maccy clipboard manager. The malware is designed to steal passwords and other sensitive data from infected devices.

Why it matters

The development matters because clipboard managers are common productivity tools, and a convincing impersonation can increase the chance that users install malware without realizing it. For crypto users in particular, password theft can put exchange accounts, wallets, and other sensitive services at risk if infected devices are used to access them.

A new Mac malware campaign is using a fake version of the open-source Maccy clipboard manager to distribute an infostealer known as PamStealer. The malicious app is designed to look like a legitimate clipboard utility while quietly harvesting passwords and other sensitive information from victims’ devices.

The development matters because clipboard managers are common productivity tools, and a convincing impersonation can increase the chance that users install malware without realizing it. For crypto users in particular, password theft can put exchange accounts, wallets, and other sensitive services at risk if infected devices are used to access them.

PamStealer adds to the growing list of malware families that target Mac users by disguising themselves as familiar software. The tactic highlights how attackers continue to rely on social engineering rather than only technical exploits to gain access to devices.

The incident is also a reminder for developers and companies that software distribution channels and brand trust remain important security concerns. Users who download apps outside of official or well-vetted sources can be exposed to malicious lookalikes that are difficult to spot at first glance.

As with other infostealer threats, the safest approach is to verify software sources carefully and limit the permissions granted to unfamiliar apps. Mac users, including those active in crypto, should be especially cautious when installing tools that request broad access to clipboard or account data.

Source: Decrypt

Keep exploring

Related stories

Bitcoin approaches $63.5K ahead of weekly close as traders watch Monday weakness

Bitcoin approaches $63.5K ahead of weekly close as traders watch Monday weakness

Bitcoin climbed to its highest level in nearly two weeks over the weekend, approaching $63,500 ahead of the weekly close. Traders were also watching a historically weak Monday pattern in BTC price action.

Read
Americans Traded $571 Million on Polymarket Political Bets Despite U.S. Ban

Americans Traded $571 Million on Polymarket Political Bets Despite U.S. Ban

U.S. users have continued trading on Polymarket’s political markets even though the platform is blocked in the United States. The activity highlights ongoing demand for crypto-based prediction markets and the limits of enforcement across borders.

Read
Banks Shift From Questioning Stablecoins to Planning Their Use in Finance

Banks Shift From Questioning Stablecoins to Planning Their Use in Finance

Banks are moving past the debate over whether stablecoins fit into finance and are now focusing on how they could be used. The shift suggests a more practical phase of adoption across the banking and crypto sectors.

Read