North Korea’s BlueNoroff Group Reportedly Targeting Crypto Community Members on MacOS

The malware is triggered through suspicious emails, according to SentinelLabs.

Advertisement
Written by Radhika Parashar, Edited by Siddharth Suvarna | Updated: 8 November 2024 18:48 IST
Highlights
  • The malicious campaign is reportedly called ‘Hidden Risk’
  • MacOS users said to receive malicious URLs in the form of emails
  • The FBI saw 45 percent rise in crypto frauds last year compared to 2022

Apple has yet to respond to the report

Photo Credit: Unsplash/ Towfiqu Barbhuriya

Cybersecurity firm SentinelLabs has raised an alert over a significant threat targeting crypto community members using macOS. According to their findings, the North Korean group BlueNoroff is distributing fake crypto news to entice users into downloading a multi-storage malware infection onto their MacBook. Dubbed the "Hidden Risk" campaign, this attack has been circulating since early 2024. Once activated, the malware can phish victims, leading to potential financial losses.

The malware is triggered via suspicious mails, SentinelLabs said in its report. These emails feature fake crypto news that appears to have been sent from the identity of a legitimate influencer.

Advertisement

“The emails hijack the name of a real person in an unrelated industry as a sender and purport to be forwarding a message from a well-known crypto social media influencer,” the report said.

If the target macOS user opens the malicious URL attached to the email it redirects users to a PDF with the ‘delphidigital[.]org' domain, which is reportedly controlled by the BlueNoroff groups.

“The full URL currently serves a benign form of the Bitcoin ETF document with titles that differ over time. However, at some point, this URL has or does switch to serving the first stage of a malicious application bundle entitled ‘Hidden Risk Behind New Surge of Bitcoin Price.app',” the report noted.

According to SentinelLabs, BlueNoroff has established a network of infrastructure focused on cryptocurrency interests, mimicking legitimate Web3 solutions. This enables the group to target individuals engaged in crypto, extracting their information for phishing attacks.

Advertisement

So far, Apple has not responded to the findings published by the cybersecurity firm.

In September, the FBI reported that crypto consumers lost over $5.6 billion (roughly Rs. 47,029 crore) to cryptocurrency-related fraud in 2023, marking a 45 percent increase from 2022. The agency also noted a rise in crypto-focused hacks attributed to North Korea.

Advertisement

In October, crypto tracking firm Arkham Intelligence revealed that an unknown hacker had compromised a US government crypto wallet containing assets seized from the 2016 Bitfinex hack. Arkham reported that around $20 million (roughly Rs. 168 crore) had been stolen from the wallet.

Crypto community insiders have repeatedly warned individuals to avoid engaging with crypto-related content from unfamiliar or unverified sources.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Vivo Y500 4G Makes Global Debut With an 8,100mAh Battery: See Price
  2. Everything We Know About the Nothing Phone 4b
  3. Samsung Galaxy Z Fold 8 Series, Galaxy Flip 8 Price Leaked Ahead of Debut
  4. Here's Why Apple's Foldable iPhone Could Go on Sale Later Than Expected
  5. Moto G77 Power Listing Confirms Key Specifications Before July 8 Debut
  1. Redmi Said to Be Working on 7-Inch 'Performance' Smartphone
  2. Bitcoin Trades Near Two-Week High as Crypto Investor Sentiment Improves
  3. iOS 27 System Prompt Reportedly Hints at Apple’s New Smart Wearable With Two Cameras
  4. Xiaomi Civi Series Discontinued With No Next-Generation Model Planned, Claims Tipster
  5. Apple’s Foldable iPhone to Hit Shelves Later Than Anticipated Due to ‘Manufacturing Challenges’, Analyst Claims
  6. Samsung Galaxy F70 Pro Bluetooth SIG Listing Suggests Its Launch Might Be Right Around the Corner
  7. iPhone Air 2 Design Leaked in New Renders That Point to Dual 48-Megapixel Cameras
  8. Vivo X300e Key Specifications Leaked; Snapdragon 8 Gen 5, 50-Megapixel Zeiss Camera Tipped
  9. Vivo Y500 4G Launched With 8,100mAh Battery, 50-Megapixel Rear Camera: Price, Specifications
  10. Moto G77 Power Listed on Company's Website With Key Specifications Before July 8 Debut
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.