According to news released on August 23, cybersecurity firm Moonlock has issued an alert about the AMOS Stealer malware targeting Mac users, which is upgrading its attack methods. The report published by Moonlock on August 5th revealed that the program has successfully resurfaced and is using Google AdSense for promotion, masquerading as popular Mac applications such as Loom, Figma, TunnelBlick, and Callzy. Despite the developers of these applications not authorizing any fake versions of the AMOS malware, the program now has the capability to clone wallet apps like Ledger Live, allowing it to steal user funds. With the further evolution of the AMOS Stealer, experts warn that it may soon expand its attack targets to other wallet apps.