#COINCU
North Korean hacker group #BlueNoroff has been targeting cryptocurrency firms with a new malware campaign called "Hidden Risk" since April 2023. The campaign primarily exploits MacOS vulnerabilities, delivering malware through phishing emails with fake PDF links. Once opened, these PDFs download malware that gives hackers remote access to victims' systems, enabling them to steal sensitive data, including private keys for digital wallets.
The #FBI and #CISA have issued warnings about ongoing threats from North Korean hackers, particularly BlueNoroff, which has long targeted the crypto industry. In recent months, the group has increased its efforts, including using fake domains to further deceive and extort victims. This campaign follows a pattern of cyberattacks linked to the #LazarusGroup , which is also associated with high-profile cybercrimes.
