Fake clipboard app steals Mac passwords silently.

PamStealer disguises itself as the Maccy utility, then abuses macOS’s own authentication layer to validate stolen passwords without triggering standard malware defenses, Jamf researchers found.

The malware delays its disk-access prompt up to 40 minutes to avoid detection at launch.

Sources: Ars Technica