MSN on MSN

MacOS users lose crypto as Reaper stealer bypasses Terminal

Reaper malware targets macOS users via Script Editor to steal crypto wallets, browser passwords, and sensitive files.
MacTech

ClickFix attack uses Script Editor instead of Terminal on macOS

Jamf Threat Labs has discovered a ClickFix-style macOS attack that abuses the applescript:// URL scheme to launch Script Editor and deliver an Atomic Stealer infostealer payload — bypassing Terminal ...
CSOonline

New ClickFix variant bypasses Apple safeguards with one‑click script execution

Jamf finds a ClickFix variant that swaps copy-paste Terminal lures for Script Editor execution, tightening delivery of Atomic Stealer. ClickFix malware campaigns are evolving again, with threat actors ...
Macworld

How to use Script Editor to re-authorize a balky AppleScript in macOS Catalina and later

If you’ve kicked around with a Mac for more than a few years and you read Macworld, you almost certainly have an AppleScript or seven that you rely on for certain custom features. I wrote a very ...
Ars Technica

Opening Chrome with URL via AppleScript works from Script Editor or bash; works only partially from launchd?

I am trying to schedule a refresh of a YouTube Stream Now stream, and the only way I've figured to do it is via reloading a particular YouTube URL*. I have an always-on Mac mini, so I wrote an ...
Tidbits

#1797: OS 26.4 updates, Mac Pro discontinued, Script Editor issues in macOS 26.4, input source-related login failures, US router ban

This week brings endings and beginnings: Adam Engst reports that Apple has discontinued the Mac Pro, while OS 26.4 arrives with Apple Music’s AI-powered Playlist Playground, independent Family Sharing ...