MACOS MALWARE YEARS RUNONLY DETECTION FOR WINDOWS
In the Windows version of the malware, Lazarus Group has updated its multi-stage infection process and changed the final payload it delivers. In some cases they have developed their own macOS malware, with an authentication mechanism built in to deliver a secondary payload directly from memory. They have also used a fake website and company called “UnionCryptoTrader.”
MACOS MALWARE YEARS RUNONLY DETECTION FOR INSTALL
The hackers have been using a fake company, “JMT Trading,” to install backdoors to funnel funds to Pyongyang, multiple researchers revealed in 2019, for example. The year before, hackers were using another fake company, “Celas Trade Pro,” to target cryptocurrency exchanges. In the last two years, multiple researchers have revealed some of Lazarus Group’s latest antics relying on front companies. Over the last few months, Lazarus has successfully compromised several banks and infiltrated a number of global cryptocurrency exchanges and fintech companies. Alongside goals like cyberespionage and cyber sabotage, the attacker has been targeting banks and other financial companies around the globe. Lazarus has been a major threat actor in the APT arena for several years. Now, hackers known as Lazarus Group or APT38 have been getting increasingly careful in other areas, according to new Kaspersky Lab research. These fake idnetities rarely pass close inspection test, the links on these weaponised websites don’t always work.
Korea needs to fund its nuclear weapons program, using a network of the fake companies and websites to hide behind. North Korean hackers have for years been using different tactics to run cyber-enabled financial thefts, most recently using fake companies to compromise cryptocurrency-related businesses. Now the hacking outfit has been tweaking some of its malware, delivery mechanisms, and payloads in an attempt to decrease their chances of getting caught.Īccording to a United Nations Report hackers have been used to steal the huge sums of money N.
0 kommentar(er)
