Summary
Group-IB has uncovered ClickLock, a new macOS-focused infostealer that uses aggressive social engineering to trick users into revealing passwords by spamming prompts and terminating key apps. Active since May 2026 and primarily targeting Europe, the malware exfiltrates browser data, crypto wallets, and other sensitive information via Telegram.