Threat Hunting for Nation-State (DPRK’s Lazarus) OS X Hacker Malware
Description
From 2018 to 2021, a North Korean hacking group known as Lazarus successfully deployed malware to steal cryptocurrency via a campaign dubbed AppleJeus. This multi-platform malware (Windows & Linux) successfully breached organizations in the industrial, energy, finance, government, tech, and telecom sectors. In this week’s edition of #TechTalkTuesday we talk through threat hunting opportunities for both persistence and command and control observed through several variations of the AppleJeus campaign.