macOS Users Hit by Python Infostealers Posing as AI Installers

Microsoft details 3 Python Infostealers hitting macOS users via fake AI tools, Google ads, and Terminal tricks to steal passwords and crypto, then erase traces.

Microsoft researchers have identified three major malware campaigns targeting macOS users. Learn how these infostealers use fake AI tools and Terminal commands to steal your passwords and crypto wallets before deleting themselves to hide the evidence.

For years, many of us have felt a sense of security using a macOS, believing that viruses were mainly a PC problem. However, this might be changing as, according to the Microsoft Defender Security Research Team, cybercriminals are now aggressively targeting macOS by using clever tricks and new programming methods.

The Three Mac Threats

Since late 2025, Microsoft Defender Experts have tracked a surge in infostealer attacks. These campaigns use social engineering to trick people into downloading malicious files. The trap typically starts with a fake ad on Google ...