Jamf Threat Labs has discovered a ClickFix-style macOS attack that abuses the applescript:// URL scheme to launch Script Editor and deliver an Atomic Stealer infostealer payload — bypassing Terminal ...

Mac OS offers AppleScript as a powerful automation tool you can use to share data among applications and turn complex file-management tasks into single-click programs. First implemented in 1992, when ...

If you’ve kicked around with a Mac for more than a few years and you read Macworld, you almost certainly have an AppleScript or seven that you rely on for certain custom features. I wrote a very ...

An ongoing malware campaign is using Apple's Script Editor instead of the Terminal to inject the Atomic Stealer data thief onto Macs. Security researchers from MDM specialist Jamf have discovered a ...

Jamf finds a ClickFix variant that swaps copy-paste Terminal lures for Script Editor execution, tightening delivery of Atomic Stealer. ClickFix malware campaigns are evolving again, with threat actors ...

This week brings endings and beginnings: Adam Engst reports that Apple has discontinued the Mac Pro, while OS 26.4 arrives with Apple Music’s AI-powered Playlist Playground, independent Family Sharing ...

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal.

North Korean hackers used AppleScript and ClickFix in recent attacks targeting macOS systems at financial organizations.