Researchers identify spread of new AppleJeus variant alongside fake cryptocurrency website run by Pyongyang
North Korea’s infamous Lazarus Group has developed new and improved versions of its cryptocurrency-stealing malware AppleJeus, marking the regime’s latest attempt to garner funds for Kim Jong Un’s weapons programs.
Researchers at American security firm Volexity say they uncovered the newest strain earlier this year embedded in trojanized versions of QTBitcoinTrader — a legitimate, open-source cryptocurrency trading application — and in malicious Microsoft Office documents. They also uncovered evidence the hacking syndicate had shifted from distributing the malware in Microsoft Installation (MSI) files to malicious Microsoft Word documents.
“This technique seems to reduce static