North Korean state threat group BlueNoroff, a subgroup of the infamous Lazarus organization, has launched a new malware attack on cryptocurrency businesses. This campaign directly targets the victims with a phishing email containing a malicious file which opens a back door in the infected Apple device. The malware establishes persistence on the device and checks the server every minute for new commands, including downloading additional payloads or running shell commands.
China-related threat actors deployed a new fileless malware against the Philippines military – TechRadar
China-related threat actors deployed a new fileless malware against the Philippines military TechRadar
