Odyssey Stealer Malware — Analysis, Campaigns & Threat Activity

Threat entity extracted from intelligence sources

Frequency
6
occurrences
First Seen
November 12, 2025
Last Seen
May 29, 2026

Odyssey Stealer is a malware family tracked across 5 threat clusters and 6 intelligence report mentions on ThreatCluster. First observed November 12, 2025; most recent activity May 29, 2026.

Related Threat Clusters

  • Malware Delivered via ChatGPT Links in New Cyber Attack Campaign

    Threat actors are exploiting ChatGPT's content-sharing feature to deliver malware through a campaign dubbed 'LLMShare.' This attack involves creating fake outage pages on the legitimate chatgpt.com domain, tricking…

    22 articles · Updated May 29, 2026
  • macOS Flags ChatGPT App as Malware Due to Certificate Revocation

    Mac users reported that the ChatGPT desktop app was flagged as malware by macOS's Xprotect system, which moved the app to the Trash. This issue arose after OpenAI revoked security certificates for older app versions due…

    2 articles · Updated May 29, 2026
  • Odyssey Stealer Malware Targets macOS Users in Coordinated Campaign

    A new wave of the Odyssey Stealer malware is actively targeting macOS users, with a focus on compromising Apple computers globally. This campaign is noted for its sophisticated techniques and rapid spread, raising…

    2 articles · Updated February 6, 2026
  • AppleScript Exploited for Malware Distribution on macOS

    Hackers are using AppleScript files to deliver malware disguised as legitimate software updates for Zoom, Microsoft Teams, and Chrome on macOS. This method has emerged as a new attack vector following Apple's removal of…

    1 article · Updated November 12, 2025
  • Hackers Use AppleScript to Disguise macOS Malware as Legitimate Updates

    Cybercriminals are leveraging AppleScript files to distribute malware disguised as legitimate updates for applications like Zoom and Microsoft Teams. This new attack vector allows them to bypass Apple's Gatekeeper…

    2 articles · Updated November 12, 2025

Recent Intelligence Reports

  • Hackers are now using ChatGPT share links to deliver malware — Neowin · May 29, 2026
  • Hackers are now using ChatGPT share links to deliver malware — Neowin · May 29, 2026
  • macOS Flags ChatGPT App, Reinstallation Restores Notarization - Let's Data Science — Letsdatascience · May 29, 2026
  • New Wave of Odyssey Stealer Actively Targeting macOS Users — Cybersecuritynews · February 6, 2026
  • New Wave of Odyssey Stealer Targets macOS Users in Active Cyberattack Campaign — Gbhackers · February 6, 2026
  • Hackers Weaponize AppleScript to Creatively Deliver macOS Malware Mimic as Zoom ... — Cybersecuritynews · November 12, 2025

CVSS v3.1 Breakdown