"North Korean Hackers Spread AppleJeus Malware Disguised as Cryptocurrency Apps"

Recent discoveries from Volexity reveal that the Lazarus Group threat actor has been seen using fake cryptocurrency apps as a lure to distribute a previously undocumented variant of the AppleJeus malware. According to researchers, this activity is notable for targeting cryptocurrency users and organizations through malicious Microsoft Office documents containing an AppleJeus malware variant. The North Korean government is known to employ a three-pronged strategy by using malicious cyber activity that is planned to gather information, carry out attacks, and generate illegal revenue for the country subject to sanctions. According to the 2021 Annual Threat Assessment published by US intelligence agencies, North Korea has engaged in cyber theft against financial institutions and cryptocurrency exchanges around the world, potentially stealing hundreds of millions of dollars to fund government priorities, including its nuclear and missile programs. This article continues to discuss the delivery of AppleJeus malware by the Lazarus Group through fake cryptocurrency apps. 

THN reports "North Korean Hackers Spread AppleJeus Malware Disguised as Cryptocurrency Apps"