🔓 Data Breaches

Infiniti Stealer: macOS's Sneaky New Thief via Fake CAPTCHA and Terminal Tricks

Imagine pasting a 'CAPTCHA fix' into Terminal, only to hand your Mac's keys to hackers. Infiniti Stealer is here, blending old-school tricks with cutting-edge compilation to plunder browsers, wallets, and Keychain.

Marcus Rivera 📅 Apr 03, 2026 ⏱️ 3 min read 👁️ 0 views

Fake CAPTCHA page dropping Infiniti Stealer payload on macOS Terminal

⚡ Key Takeaways

Infiniti Stealer uses ClickFix social engineering via fake CAPTCHAs to bypass macOS defenses without exploits.
Nuitka-compiled Python makes the stealer native, evading typical detection and analysis.
First documented macOS case blending ClickFix with Nuitka—predict more cross-platform threats ahead.

🧠 What's your take on this?

Cast your vote and see what Threat Digest readers think

Written by

Marcus Rivera

Tech journalist covering AI business and enterprise adoption. 10 years in B2B media.

#ClickFix #ClickFix malware #Infiniti Stealer #Nuitka Python #Nuitka malware #macOS infostealer

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by Malwarebytes Labs

Infiniti Stealer: macOS's Sneaky New Thief via Fake CAPTCHA and Terminal Tricks

⚡ Key Takeaways

The 60-Second TL;DR

🧠 What's your take on this?

Community Consensus

Marcus Rivera

Worth sharing?

⚡ Key Takeaways

The 60-Second TL;DR

🧠 What's your take on this?

Community Consensus

Marcus Rivera

Share this article

Worth sharing?

Related Stories

Vertex AI's Hidden Backdoor: How Default Permissions Betray Google Cloud Users

Depthfirst's $80M Sprint: Why AI Security Models Are Racing to Smart Contracts

Clawdbot's Meteoric Rise Exposes AI Agents' Hidden Security Perils

Apple's Terminal Lifeline: macOS Now Blocks ClickFix Paste Bombs Before They Explode

Stay in the loop