North Korean hacking group, Lazarus Group, is using malware to steal cryptocurrency, according to SecurityScorecard’s STRIKE Team. The malware, named Marstech1, is planted in “undetectable” GitHub repositories and NPM packages, posing a major global software supply chain threat. It specifically targets cryptocurrency wallets such as MetaMask, Exodus and Atomic. SecurityScorecard has confirmed 233 victims so far across the US, Europe and Asia.
North Korean hackers spotted using ClickFix tactic to deliver malware
The North Korean group Kimsuky is employing a social engineering tactic called “ClickFix” to distribute malware to South Korean targets. The strategy tricks users into
