
A Weaponized Google Ad Install Malicious Claude Code to Hijack Entire macOS
A sponsored Google ad impersonating Anthropic’s Claude Code CLI has been caught delivering “MacSync Stealer,” a macOS credential harvester that also silently trojans Ledger Live and Ledger Wallet apps to steal crypto seed phrases. The campaign was discovered and fully reverse-engineered by researchers at Beelzebub Labs, using their agentic threat-intel platform Caronte, after a suspicious […]
The post A Weaponized Google Ad Install Malicious Claude Code to Hijack Entire macOS appeared first on Cyber Security News.