Lazarus Group Malware Targets Crypto, Business Execs via macOS

Researchers Tie New macOS Malware Campaign to North Korea’s Lazarus Group

TL;DR Researchers linked a macOS malware campaign to Lazarus Group after identifying the “Mach-O Man” kit targeting crypto users through fake meeting invites. Victims are tricked into running commands during sham Zoom or Google Meet calls, enabling credential theft, system access, and data exfiltration through Telegram. The campaign follows other North Korea-linked crypto attacks, including the $1.4 billion Bybit hack and a recent $100,000 Zeri…

Lazarus-linked macOS malware targets crypto and fintech sectors

Security researchers have linked a fresh macOS malware campaign to the Lazarus Group, the North Korea-linked hacking outfit responsible for some of the crypto sector’s most consequential losses. The campaign, tracked by researchers as the Mach-O Man kit, is deployed through the ClickFix social-engineering framework that targets a broad spectrum of firms, including crypto companies. According to Mauro Eldritch, an offensive security expert and fo…

Mach-O Man Malware Steals macOS Keychain Data in Lazarus Group Crypto Campaign

North Korea’s Lazarus Group has deployed a modular macOS malware kit called Mach-O Man that uses fake meeting invites to steal credentials and crypto …

Lazarus Group Malware Targets Crypto, Business Execs via macOS

Lazarus Group is targeting fintech and crypto executives using macOS through a new malware kit delivered via social engineering schemes using fake Zoom or Google Meet calls.