Researchers detailed a macOS malware campaign using ClickFix-style malvertising and fake Claude download lures to deploy MacSync Stealer, an infostealer built to harvest trusted local artifacts rather than rely only on stolen passwords. Victims were redirected from Google ads to spoofed shared Claude chat pages, then tricked into running a Base64-obfuscated shell command that launched multi-stage shell and AppleScript payloads. The malware collected Keychain data, browser credentials, password-manager and wallet extension data, Telegram files, shell histories, cloud keys, Apple Notes content, and selected documents, while also prompting for the macOS password and Full Disk Access; if blocked, it added persistence through ~/.zshrc so it could retry on the next Terminal launch.
The theft enabled direct account and asset compromise. SlowMist found the malware could restore stolen Telegram Desktop and Telegram for macOS session files on another Mac without triggering phone verification or Telegram two-step verification because it reused an already authorized local session. It also targeted 16 wallet applications and 223 wallet-related browser extension IDs, harvesting candidate passwords from multiple sources to decrypt wallet data offline. In a more active phase, the malware removed legitimate Ledger and Trezor apps and replaced them with malicious WebView loaders that displayed attacker-controlled phishing pages to capture recovery phrases. Investigators linked the campaign to multiple malicious domains and Google ad campaign IDs, and published IOCs including IP addresses, URLs, and SHA-256 hashes.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
4 events from the most recent confirmed update back to the earliest known activity.
After being notified about abuse of Claude's shared chat feature in the MacSync Stealer campaign, Anthropic removed the malicious shared chat pages. The article states Claude itself was not compromised and that attackers had only abused legitimate sharing functionality.
SlowMist published an analysis describing a macOS information-stealing malware campaign that abuses local trust artifacts to take over Telegram accounts and compromise cryptocurrency wallets. The report said the malware could restore stolen Telegram sessions on another Mac without triggering phone or two-step verification, target wallet apps and extensions, replace Ledger and Trezor apps with phishing loaders, and included IOCs such as IPs, URLs, and SHA-256 hashes.
Zscaler Threat Hunting observed a ClickFix-style campaign from June 12 to June 19, 2026, in which Google ads impersonating Claude downloads redirected macOS users to shared Claude chat pages and delivered MacSync Stealer. The campaign used staged shell and AppleScript payloads, targeted credentials, wallets, Telegram data, and documents, and used persistence when initial access failed.
A SANS ISC diary reported that fake Claude download pages promoted via malicious Google search ads delivered different payloads by operating system. In a Windows infection chain observed on 2026-05-25, the activity led through multiple download domains and appeared to result in ACR Stealer based on post-infection command-and-control traffic; the report included IOCs and file hashes.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
6 references tracked. Mallory keeps watching after this page renders.
cybersecuritynews.com
Open sourcecryptika.com
Open sourcecybersecuritynews.com
Open sourceslowmist.medium.com
Open sourcezscaler.com
Open sourceisc.sans.edu
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.