9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art Apple-specific security solutions for fully automated Hardening & Compliance, Next Generation EDR, AI-powered Zero Trust, and exclusive Privilege Management with the most powerful and modern Apple MDM on the market. The result is a totally automated Apple Unified Platform currently trusted by over 45,000 organizations to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.

In this episode of Security Bite, I sit down with macOS reverse engineer Christopher Lopez (@L0Psec) and returning guest Kseniia Yamburkh (@osint_barbie) of MacPaw's Moonlock Lab to unpack ClickFix, the social engineering technique behind nearly half of all reported breaches in 2025. We get into who's actually falling victim, why it exploded so fast, how Mac malware is evolving in 2026, the current landscape, and more.

• Notorious hacker return with notnullOSX, report from Moonlock Lab
• Submit a suspicious file to MacPaw for analysis
• Jamf's full Security 360 report covering 2025 landscape
• Follow Chris on X and YouTube
• Follow Kseniia on X
• Read more in the weekly Security Bite column
• Follow Arin on X and LinkedIn

• Apple Podcasts
• Spotify
• Overcast
• Pocket Casts
• RSS Feed

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art Apple-specific security solutions for fully automated Hardening & Compliance, Next Generation EDR, AI-powered Zero Trust, and exclusive Privilege Management with the most powerful and modern Apple MDM on the market. The result is a totally automated Apple Unified Platform currently trusted by over 45,000 organizations to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.

In this episode, I break down what I think is the most significant finding from Jamf's latest Security 360 report: trojan malware now accounting for over 50% of all Mac malware detections. This is up from roughly 17% just a year prior and beats out infostealers for the number one spot. But its not as simple as trojans are just getting popular...

It basically comes down to one malware family, Atomic Stealer (shocker), which is now simultaneously sitting at the top of both the trojan and infostealer categories. That dual classification is reshaping how we should think about the Mac threat landscape, because the old lines between malware categories I think are blurring.

• Jamf's full Security 360 report
• Security Bite column: Trojan malware dominates Mac
• Read more in the Security Bite column
• Follow Arin on X and LinkedIn

• Apple Podcasts
• Spotify
• Overcast
• Pocket Casts
• RSS Feed

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art Apple-specific security solutions for fully automated Hardening & Compliance, Next Generation EDR, AI-powered Zero Trust, and exclusive Privilege Management with the most powerful and modern Apple MDM on the market. The result is a totally automated Apple Unified Platform currently trusted by over 45,000 organizations to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.

In this episode, I sit down with Talal, one-half of the duo behind the Mysk security research X account and co-founder of Psylo, a privacy-focused iOS browser app that takes a fundamentally different approach to private browsing.

We get into why not all VPNs are created equal, how exactly websites are identifying you and tracking your moments across tabs, and how Psylo tackles all of this by giving every tab its own isolated silo, complete with a separate IP address, memory, storage, and more.

If you care about browser privacy on your iPhone, this one's worth a listen. Here's my conversation with Talal.

• Follow Psylo on X
• Follow Mysk on X, Bluesky, Mastodon
• Follow Talal on X
• Follow Arin on X and LinkedIn
• Get 33% off a 1 year subscription to Psylo with offer code SECURITYBITE

• Apple Podcasts
• Spotify
• Overcast
• Pocket Casts
• RSS Feed