North Korean hacking group “Lazarus Group” has been targeting Macs with a bit of fake website used to promote an open source app that served as a trojan horse. The fake site was called JMT Trading, and was designed to look like a trading platform. To use the trading platform, you had to download an app from Github, but even though the app was open source, it contained malware for Macs, with the whole scheme being part of North Korea’s efforts to steal Bitcoin. Check out Forbes‘s report:
The hackers may then go a step further by contacting administrators and users of cryptocurrency exchanges, asking them to test and review their new app, Wardle told Forbes. If they get lucky, they get a bit of leverage in an official cryptocurrency vendor and start infecting targets.