North Korean hackers have been identified as the creators of NimDoor, a new malware targeting macOS users through fake Zoom updates. This malware exploits vulnerabilities to gain unauthorized access to systems, highlighting ongoing cybersecurity threats from state-sponsored hacking groups.

A North Korean hacking group, dubbed Elusive Comet, has been caught using Zoom's remote control feature to hijack victims' computers during seemingly legitimate business calls. By employing social engineering tactics, they trick individuals into granting remote access, allowing malware installation and data exfiltration.

BitMEX successfully thwarted a social engineering attack by the Lazarus Group, a North Korean hacking collective, uncovering potential IP addresses and significant security lapses in the process. The attack involved an employee being targeted for malicious code execution, which led to an investigation revealing critical insights into the group's methods and operational weaknesses.

North Korean IT workers are reportedly engaging in AI recruitment scams to exploit global job markets, using sophisticated techniques to lure potential victims. These scams may be part of a broader strategy to generate revenue for the North Korean regime amid international sanctions. Authorities are concerned about the implications of such operations on cybersecurity and financial fraud.

North Korean workers have been infiltrating Fortune 500 companies, posing as legitimate employees to gain access to sensitive information and technology. This infiltration raises concerns about cybersecurity and the potential for espionage against major corporations.