Lazarus APT Group, a group of hackers allegedly from North Korea have generated another piece of malware targeting Apple Macs. The software is promoted by way of a fake cryptocurrency firm.
Apple Mac security specialist and chief security researcher for Jamf, Patrick Wardle described the malware, as discovered by MalwareHunterTeam (MHT) researchers.
MHT and Wardle have cautioned that at the time of their warning, the malware went undetected by various virus detection systems, developed along the same lines as previous macOS crypto-malware.
As with the previous crypto attack, the hackers have created a bogus cryptocurrency company called JMT Trading. They modified the code for an open-source cryptocurrency trading platform, uploaded it to GitHub, and spread the malware to unsuspecting downloaders by way of a backdoor script.
With this malware installed, a remote hacker is able to have complete control and command over infected computers running MacOS.
Patrick Wardle reports that the most likely targets of this malware are crypto exchange employees who are more likely to download the software than less technical retail investors.
Lazarus Group is estimated to have used its cybercrime expertise to steal $571M in digital assets over the past year. They are also suspected of involvement in the $532M NEM hack on the Japanese exchange, Coincheck.
Anne Neuberger, manager of the National Security Agency (NSA) Cybersecurity Directorate in the US lay blame on North Korea as the state sponsor of these attacks.
Seymour Nunez is a contributing writer for Cash Tech News who enjoys writing about the intersection of blockchain technology and everyday life.
The views and opinions expressed here are for informational purposes only, and should not be confused with professional financial advice. These opinions are solely those of the author and do not necessarily reflect the views of CashTechNews.com. Every investment and trade involves risk. You should conduct your own research, and contact your professional financial advisor before making any investment.
Corrections, feedback, and ideas should be submitted through the website contact form.