A new Mac malware campaign is using a fake version of the open-source Maccy clipboard manager to distribute an infostealer known as PamStealer. The malicious app is designed to look like a legitimate clipboard utility while quietly harvesting passwords and other sensitive information from victims’ devices.
The development matters because clipboard managers are common productivity tools, and a convincing impersonation can increase the chance that users install malware without realizing it. For crypto users in particular, password theft can put exchange accounts, wallets, and other sensitive services at risk if infected devices are used to access them.
PamStealer adds to the growing list of malware families that target Mac users by disguising themselves as familiar software. The tactic highlights how attackers continue to rely on social engineering rather than only technical exploits to gain access to devices.
The incident is also a reminder for developers and companies that software distribution channels and brand trust remain important security concerns. Users who download apps outside of official or well-vetted sources can be exposed to malicious lookalikes that are difficult to spot at first glance.
As with other infostealer threats, the safest approach is to verify software sources carefully and limit the permissions granted to unfamiliar apps. Mac users, including those active in crypto, should be especially cautious when installing tools that request broad access to clipboard or account data.