A new phishing campaign is targeting crypto industry developers and influencers with fake interview requests impersonating the popular Empire podcast. Attackers pose as hosts, luring victims to fraudulent websites mimicking platforms like Streamyard and Huddle. These sites prompt users to download a macOS application, which is actually the AMOS (Atomic macOS) Stealer malware. The infection chain involves a complex process of obfuscation and execution of hidden binaries. Once infected, victims risk exposing their digital lives to criminals, who can steal login credentials and other sensitive information. The campaign highlights the importance of caution when dealing with unsolicited requests and downloads from unknown sources. Author: AlienVault
Related Tags:
fake interviews
empire podcast
huddle
T1553.001
T1059.002
amos stealer
macos
T1555
crypto
Associated Indicators:
C275252592228B51B3934A9B3932D269C2F9132CAAD5F51AE54216EC147A8834
F7FE593806AA2B2486E2052C582B1B8423B2455BF9392FA42B1D2CB6D98CA897
9665DAC619C7D17A2FAFD32F2DF77F27DC39135D31235A748BD95AC137005E9B
AF4BA47F760AE08BCE49C7B7C16E9DCFF7DF7EFF53F27ABC0C2A1EEE1CEA6085
69B859DB7397A04BB1F1C2FF9D987686B5CE0C64EC8FC716C783ED6DD755E291
6C8CCED2CE80DE1DE7BD7D3DB88ED369EDD33A65
6E22B4BCAE953D71559BF529C2C55022
streamyard.ai