Fresh find shines new light on North Korea’s latest macOS malware

November 7, 2023 at 09:48AM North Korean state-sponsored hackers have been observed using a new macOS malware called “ObjCShellz” as part of the RustBucket campaign targeting financial organizations. The malware, attributed to the BlueNoroff group, is written in Objective-C and allows attackers remote shell capabilities. The campaign uses social engineering and disguises itself as a … Read more

N. Korean BlueNoroff Blamed for Hacking macOS Machines with ObjCShellz Malware

November 7, 2023 at 09:24AM The BlueNoroff nation-state group, which has connections to North Korea, is behind a newly discovered macOS malware called ObjCShellz. It is used as part of the RustBucket malware campaign and is suspected to be delivered through social engineering. BlueNoroff is a sub-group of the Lazarus Group, known for financial crimes … Read more

Qubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit Campaign

October 18, 2023 at 08:15AM A new campaign called Qubitstrike has emerged, targeting exposed Jupyter Notebooks to mine cryptocurrency and breach cloud environments. The threat actor, likely from Tunisia, uses the Telegram API to steal credentials and launch the attack. The primary payload is a shell script that executes a cryptocurrency miner, establishes persistence, and … Read more

Binance’s Smart Chain Exploited in New ‘EtherHiding’ Malware Campaign

October 16, 2023 at 01:12AM Threat actors are using Binance’s Smart Chain (BSC) contracts to host and deliver malicious code, making it difficult to detect and stop their attacks. The campaign, known as EtherHiding, leverages compromised WordPress sites to deceive users into downloading malware through fake browser update notices. The decentralized nature of blockchain makes … Read more