North Korean hackers are targeting Mac users with a new backdoor malware called NimDoor to steal cryptocurrency and sensitive data.
They use Nim, AppleScript, and clever tactics to evade traditional security measures and maintain persistence.
Victims are lured through Telegram to a fake Zoom meeting where they are tricked into downloading malicious payloads that steal various types of data.
This attack exploits the rise in remote work and Mac users' perceived security, representing a significant advancement in North Korean cyber capabilities.