Cybersecurity researchers have uncovered a malware campaign using SVG files to carry out phishing attacks impersonating the Colombian judicial system. The campaign employs obfuscated code to bypass antivirus detection and targets macOS users with information stealers like Atomic macOS Stealer. #SVGPhishing #AtomicMacOSStealer
Keypoints
- The campaign uses SVG files embedded with JavaScript to deliver phishing pages impersonating Colombian judicial authorities.
- Obfuscation and polymorphism techniques help the SVG files evade static detection by antivirus engines.
- As many as 523 malicious SVG files have been observed, with sizes decreasing over time to evolve payload delivery.
- Attackers are shifting from malware delivered via infected DMG files to terminal-based installation methods on macOS.
- The threat landscape now includes specialized info stealers such as Atomic macOS Stealer targeting enterprise macOS devices.
Read More: https://thehackernews.com/2025/09/virustotal-finds-44-undetected-svg.html