"North Korean Hackers Update BeaverTail Malware to Target MacOS Users"

Researchers have discovered an updated variant of "BeaverTail" stealer malware used by attackers affiliated with the Democratic People's Republic of Korea (DPRK). According to security researcher Patrick Wardle, an Apple macOS disk image (DMG) file named "MiroTalk.dmg" mimics the legitimate video call service of the same name but delivers a native version of "BeaverTail." BeaverTail is a JavaScript stealer malware first documented by Palo Alto Networks Unit 42 in November 2023 as part of the "Contagious Interview" campaign. This article continues to discuss findings regarding the use of updated BeaverTrail malware.

THN reports "North Korean Hackers Update BeaverTail Malware to Target MacOS Users"

Submitted by grigby1

Submitted by Gregory Rigby on