A new version of the Banshee malware has been avoiding detection on macOS systems for the past two months, adopting encryption methods from Apple’s XProtect. Banshee, first introduced in 2024, is an information stealer that masquerades as a legitimate service while exfiltrating data, including users’ passwords and cryptocurrency wallet details. The malware is primarily distributed via deceptive GitHub repositories, with reports of ongoing distribution despite the source code being leaked.

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to