Reaper macOS infostealer abuses Script Editor to target Ledger, Trezor, Exodus

Reaper, a macOS infostealer, is spreading via fake download pages impersonating apps such as WeChat and Miro, then using Script Editor to execute hidden AppleScript. It targets desktop wallet software including Ledger Live, Trezor Suite, and Exodus, while also stealing browser passwords and sensitive files. Victims are prompted by a fake Apple security update dialog to enter their Mac password before data theft begins.