The recent campaign involves sending phishing emails that appear to contain credible crypto-related news, often masquerading as forwarded messages from cryptocurrency influencers. These emails entice recipients to download malicious files, such as fake PDF documents, which initiate the malware infection (source)(source). Once installed, the malware can create remote shells on compromised systems, allowing attackers to execute commands and potentially steal sensitive information(source).
BlueNoroff, the infamous North Korean hacker group responsible for a string of phishing and cybersecurity attacks since 2019, is targeting crypto firms with a new malware that attacks MacOS computers.
https://cointelegraph.com/news/north-korean-hacker-blue-noroff-targets-crypto-firms-new-malware
Discussion
No replies yet.