A new, previously undetected, version of the Rustbucket macOS malware has been discovered in an intrusion by a known North Korean APT group.
The North Korean Kimsuky group has targeted think tanks, academic institutions and news media organizations in order to steal their credentials and gather intelligence.
The Lazarus Group has been compromising vulnerable IIS servers in an ongoing campaign.
A new macOS malware, called "RustBucket," is used in a multi-stage attack.
Google's elite Threat Analysis Group has revealed more details of the North Korean APT43 group, which is refers to as Archipelago.