“Investigators at Kaspersky Lab attributed the attack, dubbed Operation AppleJeus, to a threat group known as Lazarus, which has a history of targeting fintech firms, banks and related organizations,” Schick reports. “In this case, however, users of a cryptocurrency exchange received emails that went to what looked like a legitimate site for a trading application from a company called Celas LLC.”
Schick reports, “Victims were encouraged to download an update that contained Fallchill, a remote access Trojan (RAT) that gave attackers complete control over an infected system by sending back information to a dedicated server.”
Read more in the full article here.
MacDailyNews Take: Let’s be careful out there. Be ever vigilant for phishing.