New macOS Malware Campaign Abuses Google Ads and Claude.ai Chats

Threat actors have launched a highly sophisticated malvertising campaign aimed at macOS users.

Discovered by security researcher Berk Albayrak on May 10, this novel attack chain abuses Google Ads and legitimate Anthropic Claude shared chats to distribute a variant of the MacSync malware.

By disguising their trap as an official installation guide for “Claude Code on Mac,” cybercriminals are increasingly manipulating trusted artificial intelligence platforms to make their social engineering schemes appear authentic.

The primary targets of this campaign are developers and technical users attempting to integrate Claude AI into their local macOS systems.

macOS Malware Exploits Google Platforms and Claude AI Services

The infection process starts when a user searches for terms like “Claude download Mac.” Attackers use malicious Google Ads to intercept these search results, redirecting victims to a deceptive but highly convincing landing page.

To establish a false sense of security, the threat actors host their fraudulent installation instructions on a publicly shared Claude.ai chat link.

Because the Claude domain itself is legitimate, this tactic allows the attackers to easily bypass traditional web filters and trick vigilant users into letting their guard down.

Once on the page, victims are instructed to copy and paste a specific terminal command to complete the supposed software installation.

This technique, often referred to as a ClickFix attack, relies entirely on user interaction to bypass native macOS security warnings.

The provided command uses base64 encoding to hide the true destination URL of the malicious payload.

When the user pastes this command into their terminal, it pipes the disguised content directly into the macOS Z shell (zsh) for immediate execution.

Upon successful execution of this obfuscated command, the system stealthily downloads the MacSync malware variant.

This specific malware family is well-known for its deep persistence mechanisms, allowing attackers to maintain long-term access and compromise macOS environments for future exploitation.

Albayrak’s analysis revealed that the primary delivery and command-and-control (C2) infrastructure for this campaign is hosted on the compromised domain customroofingcontractors[.]com.

https://twitter.com/brkalbyrk7/status/2053230027576168867?ref_src=twsrc%5Etfw

Security professionals tracking this active threat should actively monitor their environments for the specific payload.

The primary indicator of compromise is the payload’s SHA-256 hash: bbd98170ea66c8d13605cb88ad0e18602ef40c0745f7b2c979a8a342a31c1857.

Proactively blocking the identified C2 domain at the network level is a critical first step to prevent successful payload delivery and execution.

Organizations and macOS users must stay vigilant against malvertising tactics that hijack branded search queries.

The most effective defense against this specific vector is enforcing strict security policies against blindly pasting terminal commands from the internet, even when they appear to originate from trusted domains like Claude.

Furthermore, users should consistently verify their software downloads by visiting official vendor websites directly rather than clicking on sponsored search engine results.

Security teams are strongly advised to implement robust endpoint detection and response (EDR) solutions capable of flagging unusual zsh script executions and automatically investigating suspicious base64-decoded commands.

Follow us on Google News , LinkedIn and X to Get More Instant Updates. Set Cyberpress as a Preferred Source in Google

The post New macOS Malware Campaign Abuses Google Ads and Claude.ai Chats appeared first on Cyber Security News.