Iranian state-backed threat operation Tortoiseshell (TA456), has launched new watering hole attacks to distribute the IMAPLoader malware. This operation is also known as Imperial Kitten, Yellow Liderc, and Crimson Sandstorm.

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to