North Korean Hackers Deploy Updated BeaverTail Malware in Job-Seeking Campaign
1. North Korean-affiliated attackers use "MiroTalk.dmg" on macOS to deliver updated BeaverTail malware.
2. The malware, disguised as a video call service, targets job seekers for cyber espionage.
3. BeaverTail steals data from browsers and crypto wallets and can download further payloads like InvisibleFerret.
4. Distribution now uses fake job invites with a malicious MiroTalk download link instead of npm packages.
5. Phylum finds another malicious npm package, call-blockflow, imitating call-bind to download remote binaries and avoid detection.
#cybersecurity #dprkhackers #beavertail #macosmalware #jobseekingscams #invisibleferret #northkorea #lazarusgroup #phishing #infostealer #cyberthreat #malware #threatactors #aptgroup #cyberespionage #ransomware #remoteaccess #supplychainattack #phishingcampaign #infosec #threatintelligence #cryptosecurity #networksecurity #malwareanalysis #cyberdefense #securityresearch #softwaresupplychain #advancedthreats #zerotrust #technews
1. North Korean-affiliated attackers use "MiroTalk.dmg" on macOS to deliver updated BeaverTail malware.
2. The malware, disguised as a video call service, targets job seekers for cyber espionage.
3. BeaverTail steals data from browsers and crypto wallets and can download further payloads like InvisibleFerret.
4. Distribution now uses fake job invites with a malicious MiroTalk download link instead of npm packages.
5. Phylum finds another malicious npm package, call-blockflow, imitating call-bind to download remote binaries and avoid detection.
#cybersecurity #dprkhackers #beavertail #macosmalware #jobseekingscams #invisibleferret #northkorea #lazarusgroup #phishing #infostealer #cyberthreat #malware #threatactors #aptgroup #cyberespionage #ransomware #remoteaccess #supplychainattack #phishingcampaign #infosec #threatintelligence #cryptosecurity #networksecurity #malwareanalysis #cyberdefense #securityresearch #softwaresupplychain #advancedthreats #zerotrust #technews