ClareNow
Search
ClareNow
Toggle sidebar
Cybersecurity ↓ Negative

New Mac Attack Triggers 83-Hour Password Entry Loop

Be careful what you type: macOS users are warned that new ClickLock malware will kill apps and trigger an 83-hour password-entry loop to steal credentials.

Forbes 2 min read 7/10
New Mac Attack Triggers 83-Hour Password Entry Loop
Key Takeaways
  • ClickLock malware forces macOS users into an 83-hour password entry loop to steal credentials.
  • The malware kills running apps to create a sense of urgency and encourage repeated password entry.
  • ClickLock was first reported by Forbes cybersecurity journalist Davey Winder on July 18, 2026.
  • Each keystroke is captured via keylogging, allowing attackers to harvest full login credentials.
  • The 83-hour duration is designed to maximize credential capture and evade short-duration security scans.
Hate typing your password? Try doing it for 83 hours straight. A newly discovered macOS malware named ClickLock kills running applications and forces users into a marathon password-entry loop, all designed to steal their credentials. Forbes cybersecurity journalist Davey Winder broke the story on July 18, 2026, warning macOS users that this sophisticated attack exploits frustration and urgency. ClickLock doesn't just ask for the password once—it triggers an endless loop that persists even after correct entry, sometimes lasting over three days. The malware first terminates active apps, creating a sense of crisis that pressures users into repeatedly typing their login credentials. Each keystroke is captured by keylogging functionality embedded in the malware. The 83-hour timeframe is not arbitrary; it's calculated to maximize credential harvesting while evading security scans. Macs have long enjoyed a reputation for relative invulnerability to malware compared to Windows, but that perception has eroded in recent years. ClickLock joins a growing list of macOS-specific threats targeting high-value users—journalists, executives, and developers—who often hold sensitive data. The attack vector is not yet fully disclosed, but initial analysis suggests it may arrive via malicious email attachments or compromised software downloads. Apple has not released an official statement, but security researchers are reverse-engineering the malware to develop detection signatures. The broader implication is clear: as Mac market share grows, so does attacker attention. ClickLock demonstrates how social engineering combined with technical persistence can overcome macOS's built-in protections like Gatekeeper and FileVault. Users are advised to avoid installing software from untrusted sources, enable two-factor authentication everywhere possible, and—paradoxically—never type their password if they suspect a loop is fake. If you find yourself trapped in an endless password prompt, immediately force-quit all suspect processes via Activity Monitor and run a full malware scan. The next milestone will be Apple's patch—likely bundled in a macOS security update—and the inevitable copycat malware that follows.

Frequently Asked Questions

ClickLock is a newly discovered macOS malware that kills running applications and forces users into an 83-hour password entry loop to steal their login credentials via keylogging.

After infecting a Mac, ClickLock closes active apps to create urgency and then repeatedly prompts for the password. Even if the correct password is typed, the prompt reappears, continuing for up to 83 hours while recording every keystroke.

Forbes cybersecurity journalist Davey Winder broke the story on July 18, 2026, based on security researcher analysis.

Avoid installing software from untrusted sources, enable two-factor authentication, and never type your password if you suspect a fake loop. If trapped, force-quit via Activity Monitor and run a malware scan.

While any Mac user could be targeted, the attack likely focuses on high-value individuals like executives and journalists. The threat is real and demonstrates growing macOS malware sophistication.

Do not enter your password. Immediately force-quit the process using Activity Monitor, disconnect from the internet, and run a full malware detection tool. Report the incident to Apple or a cybersecurity professional.

Original source

www.forbes.com

Read original

Discussion

Join the discussion

Sign in to post a comment or reply.

No comments yet. Be the first to share your thoughts!

Sign in
Enter your email to receive a one-time sign-in code. No password needed.
Email address