BlueNoroff Deploying New RustBucket Malware Variant to Target macOS- Jamf Threat Labs.

siteadmin November 8, 2023

The BlueNoroff APT group linked to North Korea has launched a new malware variant targeting financial institutions and cryptocurrency exchanges. The malware, ObjCShellz, part of the RustBucket campaign, evades detection by splitting its C2 URL into two different strings. It enables remote command execution after infiltrating macOS devices. Cybersecurity efforts must now focus on maintaining up-to-date software and operating systems, monitoring network activities and isolating critical systems to limit malware distribution.