Novel macOS malware launched by North Korean hackers

The Lazarus Group, allegedly linked to North Korea, has deployed a new macOS malware called KANDYKORN against a cryptocurrency exchange’s blockchain engineers. The hackers used a spoofed Python application within Discord to execute the malware, which is capable of file enumeration, data extraction, and executing additional malware.