Elastic Security Labs has made a groundbreaking discovery by identifying a new strain of malware utilized by the notorious North Korean cybercrime group, Lazarus. This malicious software, aptly named “Kandykorn,” is specifically designed to target cryptocurrency exchanges.
The Kandykorn malware employs a sophisticated multi-stage infiltration process, allowing attackers to surreptitiously monitor and interact with a victim’s programs, all while remaining undetected. Elastic Security Labs’ attribution of this activity to the Lazarus Group is based on their comprehensive analysis of techniques, network infrastructure, and code-signing certificates.
This revelation sheds light on the evolving threats faced by the crypto industry, and underscores the critical role that cybersecurity plays in safeguarding digital assets. Stay informed about the latest developments at Cryptopulse Hub.
