New Reaper Malware Uses Fake Microsoft Domain to Steal macOS Passwords

New Reaper Malware Alert 🚨

A malicious new malware is targeting macOS users, disguised as a critical system update and popular workplace software. Cybersecurity firm SentinelOne’s research unit, SentinelLABS, recently discovered this threat and shared the details with Hackread.com.

The malware is a fresh variant of an infostealer called SHub, tracked under the name Reaper. Apple recently updated its macOS Tahoe 26.4 to stop similar attacks, but researchers found that Reaper tricks routes around that fix entirely, making it a serious threat for Mac users.

Key Concerns 🔍

• Permanent Backdoor: Reaper leaves a permanent backdoor by creating a hidden folder structure exactly like a legitimate Google Software Update path.
• Frequent Communication: Every 60 seconds, this hidden file communicates to the hackers’ server endpoint. If the server sends back a code, the script runs it with the user’s high privileges, allowing attackers to send new commands or install more advanced malware later.

Researchers urge Mac users to immediately close the Mac Script Editor if a web link forces it to open and avoid downloading apps from unverified websites.

For more details, check out the full article: Read full article