Fun

News Feed - 2023-11-03 08:11:52

Arijit Sarkar12 hours agoApple MacOS malware targets crypto community and engineersThe social engineering attacks trick community members into downloading a malicious ZIP archive named “Cross-platform Bridges.zip” — imitating an arbitrage bot designed for automated profit generation.4678 Total views40 Total sharesListen to article 0:00NewsJoin us on social networksA new malware discovered on Apple’s macOS — tied to the North Korean hacking group Lazarus — has reportedly targeted blockchain engineers of a cryptocurrency exchange platform.


The macOS malware “KandyKorn” is a stealthy backdoor capable of data retrieval, directory listing, file upload/download, secure deletion, process termination and command execution, according to an analysis by Elastic Security Labs.MacOS malware (REF7001) execution flow. Source: elastic.co


The above flowchart explains the steps taken by the malware to infect and hijack users’ computers. Initially, the attackers spread Python-based modules via Discord channels by impersonating community members.


The social engineering attacks trick community members into downloading a malicious ZIP archive named “Cross-platform Bridges.zip” — imitating an arbitrage bot designed for automated profit generation. However, the file imports 13 malicious modules that work together to steal and manipulate information. The report read:“We observed the threat actor adopting a technique we have not previously seen them use to achieve persistence on macOS, known as execution flow hijacking.”


The cryptocurrency sector remains a primary target for Lazarus, primarily motivated by financial gain rather than espionage, their other main operational focus.


The existence of KandyKorn underscores that macOS is well within Lazarus’ targeting range, showcasing the threat group’s remarkable ability to craft sophisticated and inconspicuous malware tailored for Apple computers.


Related:Onyx Protocol exploiter begins siphoning $2.1M loot on Tornado Cash


A recent exploit on Unibot, a popular Telegram bot used to snipe trades on the decentralized exchange Uniswap, crashed the token’s price by 40% in one hour..@TeamUnibot seems exploited, the exploiter transfers memecooins from #unibot users and is exchanging them for the $ETH right now.

The current exploit size is ~$560K

Exploiter address:https://t.co/ysyTmgUAit pic.twitter.com/MF85Fdk892— Scopescan ( . ) (@0xScopescan) October 31, 2023


Blockchain analytics firm Scopescan alerted Unibot users about an ongoing hack, which was later confirmed by an official source:“We experienced a token approval exploit from our new router and have paused our router to contain the issue.”


Unibot committed to compensating all users who lost funds due to the contract exploit.


Magazine:Slumdog billionaire 2: ‘Top 10… brings no satisfaction’ says Polygon’s Sandeep Nailwal# Blockchain# Apple# Business# Software# Hackers# North Korea# HacksAdd reactionAdd reactionRead moreCrypto horrors: Tales of lost Bitcoin walletsHelp or hindrance: Is Web3 really improving mainstream industry and products?Crypto thief steals $4.4M in a day as toll rises from LastPass breach

News Feed

Bitpay Adds APE and EUROC Support — Luxury Retail Giant Gucci Accepts Apecoin Payments
Bitpay Adds APE and EUROC Support — Luxury Retail Giant Gucci Accepts Apecoin Payments On August 2, the Atlanta-based crypto payment services provider Bitpay announced that it ha
Avid Gamers Set to Own Lands as Metagods Announces Land Sale
Avid Gamers Set to Own Lands as Metagods Announces Land Sale press release PRESS RELEASE. MetaGods, the world’s first play-to-earn 8-bit action role-playing game built on the
Andrew Singer10 hours agoWhy Binance’s US plea deal could be positive for crypto adoptionIs the settlement further indication that the crypto industry’s Wild West era is winding down, with a new epoch marked by regul
Ciaran Lyons7 hours agoBitcoin ETF approval nearing, but brace for more setbacks: BitGo CEOIn a recent interview with Bloomberg, Mike Belshe, CEO of crypto exchange BitGo, stated that the market structure needs to improv
Major South Korean Crypto Exchange Raided by Police in Alleged $25.2M Fraud Case
Major South Korean Crypto Exchange Raided by Police in Alleged $25.2M Fraud CaseSouth Korean police raided the country’s largest cryptocurrency exchange, Bithumb on September
Marcel Pechman8 hours agoChina facing deflation may be bad news for BitcoinCointelegraph analyst and writer Marcel Pechman breaks down the Federal Reserve balance sheet and explains why China’s deflation can negatively
As Crypto Economy Slumps, Total Value Locked in Defi Continues to Rise
As Crypto Economy Slumps, Total Value Locked in Defi Continues to Rise Approximately nine days ago, the total value locked (TVL) in decentralized finance (defi) across various bloc
Former Ethereum adviser files $9.6B lawsuit against US gov't
Helen Partz10 hours agoFormer Ethereum adviser files $9.6B lawsuit against US gov"tFormer Ethereum adviser Steven Nerayoff wants the U.S. government to repay $9.6 billion in damages for extortion charges that were eventu
Crypto Taxes 2022: Here’s What You Need to Know According to CoinTracking
Crypto Taxes 2022: Here’s What You Need to Know According to CoinTracking press release PRESS RELEASE. Crypto changes quickly, with new tax laws and regulations coming to several
Binance Wallet Scandal – Employee Caught Insider Trading. Here’s Why Investors Are Backing Best Wallet Token
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Jesse Coghlan5 hours agoBase’s largest DEX, LeetSwap, halts trading amid exploit concernsSome analysts have provided possible ways the exchange was exploited and pinned potential initial losses at over $600,000.2392 To
Brian Quarmby3 hours agoRogue Pepecoin team members blamed for $16M PEPE multsig withdrawalIn an announcement to the PEPE community, it was claimed that three former members stole funds from the project and then handed o