Registration
 
All news
Top Stories
Editors' Picks
Crypto News
Financial News
Currencies
Market Voices
Billionaires
Companies
Regulators News
Mikhail Vnuchkov
Mikhail Vnuchkov

North Korean hacker group BlueNoroff targets crypto firms with new MacOS malware

North Korean hacker group BlueNoroff targets crypto firms with new MacOS malware
North Korean hacker group BlueNoroff targets crypto firms with new MacOS malware

North Korean hacker group BlueNoroff has intensified its attacks on the global cryptocurrency sector with a new malware campaign specifically targeting Bitcoin and other digital assets. BlueNoroff, linked to the infamous Lazarus hacking group, has targeted various cryptocurrency firms and individuals with sophisticated phishing tactics since 2019. The new malware, recently discovered by cybersecurity firm SentinelLabs, operates under the codename "Hidden Risk" and uses a multi-stage process to infect MacOS devices.

According to SentinelLabs, the malware is typically embedded in deceptive PDF files, disguised as legitimate crypto research reports or news articles. When unsuspecting users download these files, the malware installs itself on their devices, allowing the attackers remote access to steal sensitive information, including private keys to digital wallets and platform credentials. Since 2017, North Korean hacking groups, including BlueNoroff, have reportedly stolen close to $3 billion through similar digital asset-targeted cyber campaigns.

FBI warnings and growing risk to crypto sector

In response to the heightened threat, the FBI has issued multiple warnings, urging cryptocurrency firms to implement strict security measures. In April 2022, both the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) alerted crypto firms to the specific risks posed by state-sponsored North Korean hacking groups. The FBI underscored the importance of vigilance, particularly in light of ongoing phishing schemes that continue to evolve in sophistication.

BlueNoroff has also leveraged social engineering schemes that exploit industry connections to establish trust with target employees. In recent cases, hackers used fraudulent job offers at centralized exchanges and decentralized finance (DeFi) platforms to deceive employees into clicking on malicious links disguised as employment tests or applications. Once the malware infiltrates a company’s system, it drains any available desktop wallets of funds, causing significant financial loss.

The growing wave of cyberattacks targeting the cryptocurrency sector highlights the urgent need for improved digital asset security. North Korean hackers have shown they can adapt quickly, using increasingly deceptive methods to gain access to high-value digital assets. As international authorities work to address these cyber threats, companies in the crypto space are advised to stay vigilant and prioritize cybersecurity to mitigate these emerging risks.

Read also: Tom Lee advocates Bitcoin as a hedge against U.S. Treasury bonds to alleviate U.S. debt concerns

This material may contain third-party opinions, none of the data and information on this webpage constitutes investment advice according to our Disclaimer. While we adhere to strict Editorial Integrity, this post may contain references to products from our partners.

Editor's Picks for You

How precious-metals mining revival is reshaping portfolios in 2026
  • By Ciaran Ryan
  • 18 hours ago
How precious-metals mining revival is reshaping portfolios in 2026
Editors' Picks
Bitcoin price prediction after CPI rise: Is BTC headed for deeper losses?
  • By Mikhail Vnuchkov
  • 22 hours ago
Bitcoin price prediction after CPI rise: Is BTC headed for deeper losses?
Editors' Picks
Five years with Bitcoin: How El Salvador changed after legalizing BTC
  • By Eugene Komchuk
  • Yesterday
Five years with Bitcoin: How El Salvador changed after legalizing BTC
Editors' Picks
All Editors' Top Picks
  • Ciaran Ryan
  • 18 hours ago
How precious-metals mining revival is reshaping portfolios in 2026
  • Mikhail Vnuchkov
  • 22 hours ago
Bitcoin price prediction after CPI rise: Is BTC headed for deeper losses?
  • Eugene Komchuk
  • Yesterday
Five years with Bitcoin: How El Salvador changed after legalizing BTC
  • Anastasiia Chabaniuk
  • 09.06.2026
Crypto on the court: How NBA Finals became a showcase for Ledger
  • Johnathan Maverick
  • 08.06.2026
How to build wealth from scratch in 3 practical steps
  • Hlib Chabaniuk
  • 16 min ago
Anas Alhajji: Oil declines as U.S. President Donald Trump cancels Iran strike plans
  • Olga Shendetskaya
  • 1 hour ago
Home rents in China’s major cities climb for third consecutive month, Michael Pettis notes
  • Parshwa Turakhiya
  • 1 hour ago
SpaceX valuation climbs from $1 billion to $1.77 trillion in 16 years, Jon Erlichman notes
  • Artem Shendetskii
  • 2 hours ago
Tren Griffin: SpaceX sets IPO price at $135 a share, aiming to raise $75 billion
  • Jose Antonio Gastelum
  • 2 hours ago
Sui DeFi to enable 24/7 Asian equity trading, Adeniyi Abiodun notes
Weekly Top Bonuses
up to $2,500
deposit bonus for all clients
CLAIM BONUS
Your capital is at risk.
Top News
  • Ivan Andriyenko
  • 15 hours ago
U.S. gas exports gain ground in India as Gulf supplies falter
U.S. gas exports gain ground in India as Gulf supplies falter
  • Parshwa Turakhiya
  • 18 hours ago
Japan crypto bill moves closer to final passage
Japan crypto bill moves closer to final passage
  • Igor Krasulya
  • 19 hours ago
Inflation pressure pushes ECB toward rate hike
Inflation pressure pushes ECB toward rate hike
  • Eugene Komchuk
  • 19 hours ago
Police investigate Bithumb chief over hiring of lawmaker's son
Police investigate Bithumb chief over hiring of lawmaker's son
  • Andrey Mastykin
  • 21 hours ago
U.S. strikes on Iran send Wall Street futures higher
U.S. strikes on Iran send Wall Street futures higher
Live News
  • Anton Kharitonov
  • Now
Google doubles down on AI amid stock pressure and regulatory risks
  • Anton Kharitonov
  • Now
Microsoft breaks support as pressure on shares intensifies
  • Mykhailo Ihnatenko
  • Now
Silver rebounds as Middle East tensions revive safe-haven demand
  • Anton Kharitonov
  • Now
Apple remains under pressure despite strong fundamentals
  • Mykhailo Ihnatenko
  • Now
AI stocks face first major liquidity test
Who We Are
Business Solutions
For Users
TU News
Popular Sections
Disclosures
CONTACT US
Legal
We are in Social Media
© IAFT Ltd., 2010-2026 All rights to the website are owned by IAFT Ltd.,
Registration number - HE 336186
  • Risk disclosure:

    Information on the TradersUnion.com website is for informational purposes only and does not constitute any motive or suggestion to visitors to invest money. Moreover, we hereby warn you that trading on the Forex and CFD markets is always a high risk. According to the statistics, 75-89% of customers lose the funds invested and only 11-25% of traders earn a profit. Trading in futures and options carries substantial risk of loss and is not suitable for every investor.

    That is why you should only invest money that you are prepared — or can afford — to lose at such high risks. Tradersunion.com does not provide any financial services, including investment or financial advisory services. Also, the Traders Union is not a broker and does not get money for trading in the Forex or CFD markets. Our website only provides information on brokers and the markets and helps its users to select the best brokerage company based on detailed information and objective analysis of brokers.

  • Disclaimer:

    Traders Union (TradersUnion.com) shall not be liable for the consequences of trading decisions made by the Client and for the possible loss of his capital resulting from the use of this website and information published on it.

    Forex market, CFD and cryptocurrency trading involves high risks and is not suitable for everyone. Before investing money, you need to adequately assess the level of your expertise and be aware of the risks, particularly in the context of trading with leverage. The information on this website is not intended for distribution or use by any person in any country or jurisdiction, where such distribution or use would be in violation of the local law or regulation. Any payments by Traders Union (TradersUnion.com) to the users of our website shall be legally interpreted solely as an incentive on our part for the activity on the website in the form of a deduction of a part of the advertising income; they shall not be a subject of any claims of our users or our obligations, a subject of disputes, as well as cannot be considered in relation to the services provided to users by brokers, both in fact and in their completeness and volume. The administration of the website shall not be liable for the content of user comments and reviews about the companies and shall not verify whether the authors of the reviews are indeed real clients of a specific company. All reviews, both negative and positive are published on the website without verification of their reliability; only offensive reviews that call for violence or any kind of discrimination and also reviews published from one group of IP addresses are moderated and removed. The authors of the materials shall be fully liable for the accuracy, completeness and impartiality of any information in the articles and reviews, including in the context of their use or mention of any brand names or trademarks. All mentions of the names of companies and their brands in any materials on the website shall be made in the context of communication of socially important information to the people about their activities by independent journalists, who are the authors. All evaluations and indicators on the website express the subjective opinion of the authors of the reviews (articles) and shall not be viewed as accurate statements and be a subject of disputes and claims against Traders Union.

  • Disclosure of advertisers and revenues:

    All the services on the Tradersunion.com website are free for you to use. Our team spends thousands of hours per annum researching brokers and gathering information about them to help investors all over the world to choose reliable companies and to avoid fraudsters.

    Indeed, the curating, sourcing, and organization of this process requires substantial financial investment by Tradersunion.com, which the website earns in the form of advertising payments. There are two types of advertising services on the website — direct advertising or partner (broker) participation programs. However, no services purchased by our partners shall affect the recommendations on our website, or our opinions, or ratings. Our ratings are based on our objective rating criteria and methodology; and the results are always equally and fairly applied to each broker. The work of our content authors and research groups does not involve any interaction with our advertisers and they do not have access to data concerning the amount of advertising purchased. For over 10 years we consider our independence, absolute openness, and objectivity as our main priority. Please follow the links to each of our affiliated broker’s websites. This will help Tradersunion.com to continue to provide our services to you for free.

onepercentfortheplanet.org World Association of News Publishers https://gdpr.eu/ GDPR