North Korean hackers employ new tactics to compromise crypto-related businesses
North Korean hackers are targeting crypto-related businesses with phishing emails and novel macOS-specific malware.
The crypto-related phishing campaign
Since July 2024, phishing emails seemingly containing helpful information on risks related to the rise of the price of Bitcoin have been sent to intended victims in cryptocurrency-related industries, SentinelLabs researchers have found.
The phishing email (Source: SentinelLabs)
The email urges the recipient to click on the “Open” button to download a PDF file, but doing that will trigger the download of a malicious macOS application bundle named “Hidden Risk Behind New Surge of Bitcoin Price.app”.
Once launched, the app downloads and opens a decoy PDF file containing…
