Tag
OSX.Dummy Malware Targeting Cryptocurrency Community
2 rulesOSX.Dummy is a new macOS malware targeting the cryptocurrency community, as reported by Objective-See.
Lazarus Group Targeting AI Models to Enhance Cryptocurrency Theft
2 rules 1 TTPThe Lazarus Group is targeting AI models through supply chain attacks, contractor misuse, and fraudulent hiring to improve their ability to steal cryptocurrency and fund weapons programs.
BlueNoroff Targeting Web3 Sector via Spear Phishing
2 rules 1 TTPBlueNoroff, a subgroup of the Lazarus Group, is targeting North American Web3 companies through spear-phishing campaigns, impersonating Fintech legal professionals.
NICKEL ALLEY Targeting Developers with Fake Job Opportunities
2 rules 5 TTPs 4 IOCsNICKEL ALLEY, a North Korean threat group, is targeting technology professionals with fake job opportunities and malicious code repositories to deliver malware like PyLangGhost RAT and BeaverTail, aiming to steal cryptocurrency.
Calendar 2 Mac App Store Application Mines Cryptocurrency
3 rules 1 TTPThe 'Calendar 2' application, available on the official Mac App Store, was found to surreptitiously mine cryptocurrency on users' Macs, utilizing the 'xmr-stak' miner to mine Monero (XMR) and report mining operations to calendar.qbix.com.
Lazarus Group's AppleJeus macOS Backdoor via JMT Trader
2 rules 2 TTPs 3 IOCsThe Lazarus APT group is distributing a macOS backdoor named AppleJeus via a fake cryptocurrency trading application called JMT Trader, persisting through a launch daemon and communicating with the C&C server beastgoc.com.