rustbucket

ChainCatcher news, according to Sekoia.io, has discovered a malware for macOS written in Rust and Objective-C called "RustBucket." It consists of a macOS installer that installs a fully functional PDF reader with a backdoor. This fake PDF reader requires opening a specific PDF file as a key to trigger malicious activities, after which it collects and sends information about the compromised system.It is reported that this malware is suspected to be linked to the hacker group Bluenoroff, which has ties to North Korea. Since 2017, Bluenoroff has been conducting financial activities targeting cryptocurrency exchanges and venture capital-related entities in Europe and Asia. (source link)