A kernel driver derived from a 2023 BlackCat ransomware exploit is believed by Trend Micro researchers to be an updated version of a similar driver. The driver leverages a unique user client to control, halt, and eliminate processes in various endpoints. In response, industry experts reiterated the necessity for securing code-signing certificates and implementing secure processes. They also stressed the importance of collaboration and monitoring in the face of escalating cyber threats.
North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to
