Lazarus Group targets crypto, fintech firms with new macOS malware

The North Korean hacking organization Lazarus Group is targeting the cryptocurrency and fintech industries with a new macOS malware kit called "Mach-O Man," CoinDesk reported. According to BCA founder Mauro Eldritch, the hackers send an urgent video conference invitation via Telegram that directs victims to a fake website. There, they are instructed to paste a command into their Mac terminal under the pretext of fixing a connection error. Eldritch explained that once the command is executed, the attackers gain immediate access to corporate systems, SaaS platforms, and financial resources. The malware then self-deletes its traces, making it difficult for victims to realize they have been compromised.