2023-11-28 21:39:18
According to the SentinelOnecrackers linked to North Korea increased their attacks in 2023, especially targeting those who use the macOS. According to the company, they are using two main strategies: RustBucket it’s at KandyKorn.
RustBucket disguises itself as a program for opening PDF files, but it is actually a type of malicious software. It uses a fake document to download a code to the computer of the person who opens it.
KandyKorn focuses on engineers who work with technology blockchain on cryptocurrency exchange platforms. Using Python programs, they manage to invade the victim’s Discord and then place a RATRemote access trojana remote access Trojan.”>1 hidden non system.
Now, however, hackers are mixing parts of these two types of campaigns. They are combining pieces of RustBucket with pieces of KandyKorn in order to make it harder for protection programs to identify and stop these attacks.
SentinelOne says its solution can find and protect against parts of this malware. Even so, you need to be careful. It is important to be wary of files or programs from unknown sources and always keep your system properly updated. ????
via AppleInsider
1701221995
#North #Korean #hackers #combine #malware #attack #macOS