Info Stealer

Poseidon

First seen: 2024 • Status: active

Currently Active Threat

Poseidon is a Mac password stealer spread through fake ads that targets cryptocurrency and password managers.

Overview

Poseidon is a macOS stealer distributed through malvertising. It targets browser data, cryptocurrency wallets, and password managers.

Also Known As

Poseidon Stealer

How It Spreads

  • Malvertising
  • Fake software
  • Google Ads abuse

What It Does

  • Browser credential theft
  • Crypto wallet theft
  • Password manager targeting
  • Keychain extraction

Is your business exposed?

Target Platforms

macOS

Detection Tips

  • Monitor for macOS stealer indicators
  • Check for browser data access
  • Analyze cryptocurrency wallet access
  • Review malvertising sources

MITRE ATT&CK Techniques

T1555, T1539, T1189, T1005

If You're Infected

  1. 1.

    Remove Poseidon malware

  2. 2.

    Reset all passwords

  3. 3.

    Move crypto assets

  4. 4.

    Update password manager credentials

Related Malware

Atomicstealer, Banshee, Xloader

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices