Browser Threats: Magecart, Fake Updates, and Data Stealers
This newsletter is AI generated and may hallucinate sometimes 😊
Magecart Attacks and Fake Browser Update Campaigns Target Users
- Magecart attacks are resurging, utilizing malicious JavaScript injection on e-commerce sites to skim payment card data directly from user browsers.
- A new macOS information stealer, Atomic Stealer (AMOS), is being distributed via social engineering, specifically through deceptive fake browser updates, to compromise user systems.
- Atomic Stealer (AMOS) targets and exfiltrates sensitive browser data such as passwords, cookies, credit card information, and cryptocurrency wallet details from major browsers including Chrome, Firefox, and Safari.
Source: Security Affairs | Date: January 15, 2026