North Korean cyber campaign targets blockchain engineers with new macOS malware



News North Korean cyber campaign targets blockchain engineers with new macOS malware Lazarus Group used coding challenge and job offer as lure in sophisticated social engineering scheme, security firm says Shreyas Reddy November 3, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON An illustration of malware on a Mac computer \| Image: NK Pro North Korean cybercriminals targeted blockchain engineers working for a cryptocurrency exchange platform with new macOS malware, posing as fellow engineers on an instant messaging platform, according to a U.S. cybersecurity firm. Researchers traced the intrusion to a Python programming language application disguised as a tool designed to profit from cryptocurrency rate differences between various platforms, Elastic Security Labs said in a report published Wednesday. Citing similarities in techniques, network infrastructure and certificates used to digitally sign applications, the firm attributed the attack to the DPRK’s Lazarus Group. The campaign’s focus Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01What Arab Gulf states’ rise as mediators means for future US-North Korea talks 02North Korea prioritizes shipyard construction as major naval base project stalls 03North Korea heralds naval revolution with launch of impressive new destroyer 04How secret North Korean customs rules lay bare a bizarre trade regime 05Elite absences hint at a North Korean power struggle ahead of party congress 06With Yoon’s exit, South Korea faces critical choices on North Korea strategy 07Tools of the trade: How North Korea launders billions in stolen cryptocurrency 08North Korea’s ‘new’ sniper rifle likely Austrian import or copy: Analysis

News

North Korean cyber campaign targets blockchain engineers with new macOS malware

Lazarus Group used coding challenge and job offer as lure in sophisticated social engineering scheme, security firm says

Shreyas Reddy November 3, 2023

North Korean cyber campaign targets blockchain engineers with new macOS malware

An illustration of malware on a Mac computer | Image: NK Pro

North Korean cybercriminals targeted blockchain engineers working for a cryptocurrency exchange platform with new macOS malware, posing as fellow engineers on an instant messaging platform, according to a U.S. cybersecurity firm.

Researchers traced the intrusion to a Python programming language application disguised as a tool designed to profit from cryptocurrency rate differences between various platforms, Elastic Security Labs said in a report published Wednesday.

Citing similarities in techniques, network infrastructure and certificates used to digitally sign applications, the firm attributed the attack to the DPRK’s Lazarus Group.

The campaign’s focus

01What Arab Gulf states’ rise as mediators means for future US-North Korea talks
02North Korea prioritizes shipyard construction as major naval base project stalls
03North Korea heralds naval revolution with launch of impressive new destroyer
04How secret North Korean customs rules lay bare a bizarre trade regime
05Elite absences hint at a North Korean power struggle ahead of party congress
06With Yoon’s exit, South Korea faces critical choices on North Korea strategy
07Tools of the trade: How North Korea launders billions in stolen cryptocurrency
08North Korea’s ‘new’ sniper rifle likely Austrian import or copy: Analysis

North Korean cyber campaign targets blockchain engineers with new macOS malware

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy