Your Mac Is Under Attack From 3 Directions Right Now
•February 20, 2026
0
Why It Matters
Because macOS is often perceived as secure, these attacks reveal critical gaps that can compromise financial assets and personal data, prompting enterprises and individuals to reassess their security hygiene.
Key Takeaways
- •North Korean actors use AI‑deepfake videos to target crypto users
- •Social‑engineered Zoom/Calendly scams trick macOS users into running commands
- •AMOS infostealer exploits OpenClaw AI extensions to harvest Mac credentials
- •Malvertising via Google Ads mimics Homebrew installs to deliver malware
- •Use ad blockers, safe‑word verification, and avoid unvetted third‑party tools
Summary
The Techlore Surveillance Report warns macOS users that they are currently facing three distinct attack campaigns, ranging from state‑backed AI‑driven phishing to supply‑chain malware and malicious advertising. While the episode also touches on Discord’s age‑verification rollout and other tech news, the focus remains on how these threats specifically target Apple computers.
The first campaign, attributed to North Korean groups, uses AI‑generated deep‑fake videos and a click‑fix chain to lure cryptocurrency executives through compromised Telegram accounts, Calendly links, and spoofed Zoom meetings, ultimately delivering macOS and Windows payloads. A second vector leverages the AMOS infostealer embedded in third‑party extensions for the OpenClaw/Claw Hub AI platform, harvesting passwords, keychain data and system information from unsuspecting users. The third attack exploits Google’s ad network: fake Homebrew installation ads—hosted on domains like Claude.ai—direct users to malicious scripts that install malware via the command line.
A striking example cited is the attacker’s use of a deep‑fake CEO video to convince a victim that audio issues required command‑line troubleshooting, illustrating how visual deception can bypass traditional skepticism. Researchers also noted that AMOS has been sold on underground markets for $1,000 a month and previously targeted LastPass users through counterfeit GitHub repositories. The malvertising scheme demonstrates how trusted‑looking search results can be weaponized, prompting the FBI’s recommendation to deploy ad blockers.
These incidents underscore that no operating system is immune; macOS users must adopt multi‑layered defenses—verify identities with pre‑arranged safe words, restrict installation of unvetted AI extensions, keep software patched, and employ ad‑blocking tools. The broader lesson is that sophisticated social engineering and supply‑chain abuse are expanding beyond niche targets, demanding heightened vigilance across all platforms.
Original Description
No operating system is safe, and this week, Mac users got hit from three directions at once. We cover the attacks, Discord's messy age verification expansion, hidden hotel cameras in China, and everything else threatening your digital rights.
📱 RESOURCES IN VIDEO
• Show Notes: https://techlore.tech/mac-hit-by-3-simultaneous-attacks-discords-age-verification-fails-googles-deleted-footage-returns-sr256/
🧡 SUPPORT TECHLORE
Support our mission to defend digital rights for everyone:
• All Our Support Methods: https://techlore.tech/support/
🔐 MORE FROM TECHLORE
• Homepage & Newsletter: https://techlore.tech
• Our Course, Go Incognito: https://techlore.tech/go-incognito-course/
• Privacy Tools: https://privacytools.techlore.tech/
• VPN Comparison Chart: https://vpn.techlore.tech/
⏱️ TIMESTAMPS
00:00 INTRO
01:00 MACOS ATTACKS
13:12 DISCORD AGE VERIFICATION
23:34 MORE AGE VERIFICATION
26:08 GOOGLE NEST FOOTAGE MYSTERY
30:56 DEFENSE BULLETIN
#discord #ageverification #macsecurity
0
Comments
Want to join the conversation?
Loading comments...