Apple's MacOS is the latest victim of cybersecurity threats, with blockchain specialists on a cryptocurrency platform being the prime targets.
Upon meticulous research, Elastic Security Labs unveiled the workings of malware "KandyKorn," which is linked to the North Korean Lazarus Group. This malware can not only extract data but also manage files, cancel processes, and initiate commands on an infiltrated system.
Did you know?
Subscribe - We publish new crypto explainer videos every week!
What is Blockchain? (Animated Examples + Explanation)
According to Elastic Security Labs, the attacks began on the popular Discord platform, where attackers camouflaged themselves as genuine community members. Using this cover, they distributed a deceptive file, purportedly an arbitrage bot for cryptocurrency, which is, in reality, packed with harmful files.
One significant detail from the analysis highlighted the hacker group's ever-evolving tactics, revealing that malicious actors adopted a previously unseen method, called "flow hijacking," to maintain a lasting presence on MacOS.
For the Lazarus group, the appeal of the cryptocurrency world seems to stem from its lucrative nature. Thus, the unveiling of "KandyKorn" proves that even robust platforms like MacOS can't always evade the advanced and concealed techniques of seasoned hackers.
Another incident in the crypto sphere that underscores the urgency of heightened security was the vulnerability of Unibot. This widely-used Telegram bot facilitates trades on Uniswap but fell prey to an exploit. This vulnerability led to a significant nosedive in the token's price, plummeting by 40% in just 60 minutes.
As a gesture of goodwill and responsibility, Unibot has pledged to offset the losses of the impacted users.
The events surrounding KandyKorn and Unibot serve as cautionary tales for the crypto community. As cyber threats constantly evolve, security protocols must be a step ahead to safeguard user interests and assets.