The Banshee info-stealing malware has been upgraded to target browser credentials, cryptocurrency wallets, and passwords of macOS users for the last four months. Primarily distributed through malicious uploads on GitHub, Banshee often poses as the Telegram messaging app or Google Chrome browser to deceive users. The malware leverages a string encryption algorithm from Apple’s XProtect to stay undetected and top antivirus firms have only recently understood its workings.
North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to
