AMOS Trojan updates its strategy: now uses OpenClaw instead of ChatGPT
The AMOS Trojan has updated its macOS lure: after previously using ChatGPT, it is now switching to OpenClaw. The malware targets user data through social engine
The AMOS trojan, which specializes in stealing data from macOS, has updated its distribution scheme. Instead of ChatGPT, it now uses the OpenClaw AI assistant to create more convincing bait.
How the old scheme worked
Last December, AMOS employed a simple but effective method. Threat actors sent links allegedly offering ChatGPT integration with some useful utility. Users clicked, landed on a phishing page, and entered their credentials themselves. The scheme is ancient, but it works: people trust familiar services and click quickly without checking the URL.
From ChatGPT to OpenClaw
It turns out that OpenClaw is even more attractive to victims. The reasons are clear: it's a less well-known service than ChatGPT, so users understand less about how authentication should work. Additionally, OpenClaw integrates more actively into various workflows, making the phishing more convincing. Threat actors adapt their tactics to target audience behavior. While in December they played on people's curiosity about ChatGPT, now they're betting on trust in local tools and deployed infrastructure.
Why macOS is in focus
Apple's OS has long been considered more secure against trojans. This is a myth, but a powerful one: macOS users are often less vigilant when opening files and clicking links. AMOS knows this and has concentrated on this platform specifically.
- macOS users often work with confidential data (designers, developers, analysts)
- The price of a compromised macOS account is higher than Windows
- Fewer antivirus solutions that catch such trojans on the fly
- Often a single protection program is installed or nothing at all
What this means
The AMOS trojan shows how quickly cybercriminals adapt to changes in the AI services ecosystem. Every new popular tool becomes a vector of attack. If you're offered to click a link allegedly to integrate with an AI assistant — check the address in your browser twice. And never enter passwords on a site you reached by clicking randomly.