- A new infostealer malware dubbed “Realst” is being implemented into fake blockchain games by cybercriminals in a massive campaign targeting Windows and macOS users, including those on macOS 14 Sonoma.
- Security researchers have found that the malware is written in the up-and-coming programming language Rust and some variants are already targeting macOS 14 Sonoma ahead of its public release.
- Realst can scrape web browser data, including stored passwords, and can completely empty cryptocurrency wallets within minutes.
The new infostealer malware dubbed “Realst” is being spread among Windows and macOS users via fake blockchain games such as Brawl Earth, WildWorld, Dawnland, Destruction, Evolion, Pearl, Olymp of Reptiles, and SaintLegend. Security researchers have found that the malware is written in the up-and-coming programming language Rust and some variants are already targeting macOS 14 Sonoma ahead of its public release.
Realst silently works in the background of compromised macOS devices, capable of scraping all sorts of web browser data, including stored passwords, to send back to the threat actors. The targeted web browsers include Firefox, Chrome, Opera, Brave and Vivaldi. Furthermore, the games are being advertised among malicious websites and on social media (i.e., Twitter). Each of them is accompanied by its own Discord and Twitter accounts to further create a sense of legitimacy that, unfortunately, some individuals have fallen victim to.
To protect yourself against Realst and other malware, it is important to do your due diligence before installing anything outside the official Mac App Store, hover over and confirm links before opening them, use strong, complex passwords and 2-step authentication (non-SMS if possible, OTP is best), exercise caution when granting permissions on your Mac, and keep your devices and applications up-to-date. If you’re interested in performing a thorough checkup on your Mac, check out our guide here.