North Korean attackers are using LinkedIn to target developers in a fake job recruitment operation that delivers malware, Google’s Mandiant reports. The operation sends a Python coding challenge containing COVERTCATCH malware, with the aim of compromising a target’s macOS system. Similar operations have been observed delivering other malware families, including RustBucket and KANDYKORN.
MacOS Malware Poses as Unarchiver App to Steal User Data
Well, cyber friends! You won’t believe what we just uncovered on our daily hunt for all things security-related here at the Bay Area cyberhawks HQ.