BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence SentinelLabs has observed a suspected DPRK threat actor targeting Crypto-related businesses with novel multi-stage malware.

A new #SentinelLabs discovery has found a suspected #NorthKorean threat actor targeting macs using a novel and “especially interesting” persistence mechanism, which abuses the #Zshenv configuration file.

This is the ‘Hidden Risk’ campaign. 📄 By Raffaele Sabato, Phil Stokes, Tom Hegel. s1.ai/BNThief