ChainCatcher news, according to Cointelegraph, based on a report from SentinelLabs, North Korean hackers known as BlueNoroff are using new malware to attack cryptocurrency companies. The malware operation, codenamed "Hidden Risk," spreads through multiple stages via PDF files, using fake news headlines and cryptocurrency market research to lure users into downloading it.The malware package contains multiple features designed to provide hackers with a backdoor for remote access to victims' computers, stealing sensitive information, including private keys for digital asset wallets and platforms. According to cybersecurity company Recorded Future, North Korean hacker groups have stolen approximately $3 billion since 2017.

ChainCatcher news, according to Sekoia.io, has discovered a malware for macOS written in Rust and Objective-C called "RustBucket." It consists of a macOS installer that installs a fully functional PDF reader with a backdoor. This fake PDF reader requires opening a specific PDF file as a key to trigger malicious activities, after which it collects and sends information about the compromised system.It is reported that this malware is suspected to be linked to the hacker group Bluenoroff, which has ties to North Korea. Since 2017, Bluenoroff has been conducting financial activities targeting cryptocurrency exchanges and venture capital-related entities in Europe and Asia. (source link)