According to Cointelegraph, the North Korean hacking group BlueNoroff is using a new malware to target cryptocurrency companies on MacOS computers. According to a report by SentinelLabs, the malware, codenamed 'Hidden Risk', spreads through multiple stages via PDF files. The threat actors lure unsuspecting individuals and companies with fake news headlines and legitimate cryptocurrency market research. Once a user downloads the PDF file, a seemingly legitimate bait PDF is opened, while the malware is downloaded in the background as a separate file to the MacOS desktop. This malware package contains multiple functions designed to provide hackers with a backdoor to remotely access the victim's computer to steal sensitive information, including private keys for digital asset wallets and platforms.
