A new malware campaign attributed to North Korean hackers has successfully bypassed Apple’s security measures, targeting cryptocurrency users through malicious apps. The malware, identified as AppleJeus, has been linked to the Lazarus Group, a notorious North Korean cybercrime syndicate. This marks the latest in a series of attacks aimed at stealing digital assets, as the group continues to refine its tactics to exploit vulnerabilities in widely used software.
The malware, which has been circulating since 2018, has evolved over time to evade detection by Apple’s security systems, including recent updates to macOS. It typically masquerades as legitimate cryptocurrency trading software, tricking users into downloading and installing infected applications. Once activated, the malware allows hackers to steal sensitive data and private keys, giving them access to cryptocurrency wallets and assets.
Experts say this latest attack underscores the growing sophistication of North Korean cyber operations, which are increasingly targeting high-value digital assets like Bitcoin and Ethereum. The Lazarus Group has long been suspected of using cybercrime to fund the country’s regime, and cryptocurrency theft remains a top priority. In the past, the group has also been linked to attacks on exchanges, wallet providers, and financial institutions in multiple countries.
Apple has yet to comment on the specifics of this new breach, but cybersecurity experts are urging users to remain vigilant when downloading software, particularly from unverified sources. Cryptocurrency users are advised to use hardware wallets and multi-factor authentication to protect their assets. This incident highlights the need for stronger security measures and awareness in the face of increasingly sophisticated cyber threats targeting the digital asset space.
