Researchers have identified a new malware strain named 'Cthulhu Stealer' targeting macOS users, operating as a malware-as-a-service for $500 a month. This malware, disguised as legitimate software like CleanMyMac and Adobe GenP, steals sensitive information, including passwords and cryptocurrency wallet details, by prompting users to enter their credentials after bypassing security protections. The Cthulhu Stealer is believed to be a modified version of the previously discovered 'Atomic Stealer', sharing similar data collection techniques and password prompts. Additionally, another malware called 'TodoSwift' was discovered, which pretends to be a PDF reader but downloads malicious payloads, potentially linked to the North Korean cybercrime group BlueNoroff. The emergence of these threats highlights the increasing targeting of macOS systems by cybercriminals. Experts recommend that users maintain caution when downloading software and perform regular security scans to protect against such threats.