FBI Chief Kash Patel’s Clothing Store Compromised by ClickFix macOS Infostealer
What Happened — Hackers operated a malicious “ClickFix” website that lured macOS visitors of FBI Chief Kash Patel’s online clothing store into downloading an infostealer payload. The malware harvested browser cookies, saved passwords and other personal data from shoppers.
Why It Matters for TPRM —
- High‑profile government figures can be targeted through seemingly innocuous third‑party retail sites.
- The incident shows that e‑commerce platforms, even small‑scale ones, are viable entry points for credential‑stealing campaigns.
- Organizations must assess the security posture of any external storefront or SaaS that processes sensitive contacts.
Who Is Affected — Government officials, retail/e‑commerce vendors, macOS end‑users.
Recommended Actions —
- Conduct a security review of all third‑party e‑commerce providers and web‑hosting contracts.
- Enforce multi‑factor authentication and password‑less login where possible for admin accounts.
- Deploy endpoint protection on macOS devices and educate users on malicious download vectors.
Technical Notes — Attack vector: malicious website (ClickFix) employing social‑engineering to deliver a macOS infostealer. No known CVE; data types exfiltrated include login credentials, session cookies, and possibly payment details. Source: HackRead