Kash Patel-linked apparel site pulled after macOS malware alert
A Kash Patel-linked apparel site went offline after macOS visitors were prompted to run a terminal command that installed “ClickFix,” malware that can steal browser session tokens and crypto wallets.
An apparel website linked to Kash Patel and Andrew Ollis went offline on Friday after macOS visitors were shown a prompt instructing them to run a terminal command that installed malware known as “ClickFix.” Security researchers say the software is an infostealer that can harvest browser session tokens, stored credentials and cryptocurrency wallet files.
Until the site went dark, macOS users who opened the store were presented with copy-and-paste instructions for a Terminal command. Some security researchers reproduced the installation flow on macOS and confirmed that following the command launched the infostealer. Other researchers reported they could not replicate the same prompt.
Users visiting the site with the MetaMask wallet saw a “potentially deceptive” warning that listed “malicious transactions resulting in stolen assets” among the risks. The store currently displays a message reading “the store will be back online shortly-bolder than ever.” It is not clear whether the apparent compromise caused significant losses. The site typically receives an estimated 33,600 visits per month, and one of its top product pages features a camouflage hoodie.
The apparel venture is owned by Kash Patel and Andrew Ollis. Ollis is listed as CEO of the Kash Foundation and serves on the foundation’s board. The foundation’s website links to the apparel store from a primary menu and states that Patel founded the organization but is no longer affiliated with it. The foundation also discloses that it is not associated with government agencies, including the FBI.
The ClickFix incident follows prior crypto-related events involving Patel. Two months ago, law enforcement said it was investigating several PC games that installed malicious software. Earlier leaks of Patel’s personal email and a burner username were followed by a surge of meme tokens themed around Patel. Patel is the current director of the FBI and has publicly discussed the bureau’s expanding use of artificial intelligence to counter criminals.
Infostealer malware is designed to extract data quietly from compromised devices; variants and distribution methods have been active since the mid-2000s. Security observers advised caution about copy-pasting commands into a system terminal and recommended users heed wallet warnings before interacting with sites that trigger them.
The material on GNcrypto is intended solely for informational use and must not be regarded as financial advice. We make every effort to keep the content accurate and current, but we cannot warrant its precision, completeness, or reliability. GNcrypto does not take responsibility for any mistakes, omissions, or financial losses resulting from reliance on this information. Any actions you take based on this content are done at your own risk. Always conduct independent research and seek guidance from a qualified specialist. For further details, please review our Terms, Privacy Policy and Disclaimers.
Articles by this author
