Mac malware has been discovered which is circulated via Google Ads and can steal sensitive data such as passwords and cryptocurrency wallets. Promoting Mac versions of the unconventional browser, Arc, the malware sends data to an IP address linked to Poseidon, a service available in criminal markets that accesses data collected. This is the second time within two months that Google Ads has been used to disperse such malware.

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The