Lazarus Group Deploys New macOS Malware Toolkit in Crypto Exec Hunt

• Lazarus Group Mach-O Man campaign targets crypto and fintech executives with fake meeting links.
• Victims paste a Mac Terminal command that opens access to systems, SaaS accounts, and funds.
• CertiK linked related attacks to over $500M in two weeks, while lifetime loot hit $6.7B.

Security experts warned Wednesday that North Korea’s state-backed Lazarus Group has launched a new “Mach-O Man” campaign aimed at crypto, fintech, and other high-value executives. According to reports, the operation uses Telegram messages, fake meeting pages, and a copied Terminal command on macOS to steal credentials, browser sessions, and Keychain data.

Researchers said the toolkit can erase itself after an attack, reducing visibility for detection tools and complicating efforts to trace the breach. SlowMist Chief Information Security Officer 23pds warned on X that the Lazarus Group�…

Read The Full Article Lazarus Group Deploys New macOS Malware Toolkit in Crypto Exec Hunt On Coin Edition.