Infiniti Stealer Campaign Targets macOS Users via Fake Cloudflare CAPTCHA Pages

A new macOS malware called ‘Infiniti Stealer’ is spreading through fake Cloudflare CAPTCHA pages that trick users into running malicious Terminal commands. The attack uses social engineering (ClickFix) instead of vulnerabilities allowing it to bypass security controls. Infiniti Stealer runs in multiple stages and steals sensitive data highlighting the growing risk to macOS users.

Pulse ID: 69c72fba45868caa2fc6a152
Pulse Link: https://otx.alienvault.com/pulse/69c72fba45868caa2fc6a152
Pulse Author: cryptocti
Created: 2026-03-28 01:32:42

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CAPTCHA #Cloud #CyberSecurity #InfoSec #Mac #MacOS #Malware #OTX #OpenThreatExchange #SocialEngineering #bot #cryptocti