North Korea hackers go after business executives in latest info-stealing scheme



News North Korea hackers go after business executives in latest info-stealing scheme Espionage operation dubbed ‘Chaotic Capybara’ spreads macOS malware to both job seekers and the C-suite, researchers say Shreyas Reddy March 28, 2025 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON An illustration of the Chaotic Capybara malware infecting a computer \| Image: NK Pro North Korean cybercriminals have deployed a new malware to steal data from potential job seekers and executives, continuing their elaborate espionage operations targeting the cryptocurrency and blockchain sectors through fake recruitment schemes. The DPRK threat actor Velvet Chollima, also known as Kimsuky, distributed a new information-stealing program that researchers have named “Chaotic Capybara,” according to a new report released by the British-Argentine-Uruguayan cybersecurity firm Birmingham Cyber Arms (BCA) on Tuesday. Researchers linked the new malware targeting Apple computers to North Korea’s ongoing Contagious Interview campaign targeting the crypto-financial sector and Web3 ecosystem built around Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Elite absences hint at a North Korean power struggle ahead of party congress 02With Yoon’s exit, South Korea faces critical choices on North Korea strategy 03Tools of the trade: How North Korea launders billions in stolen cryptocurrency 04North Korea’s ‘new’ sniper rifle likely Austrian import or copy: Analysis 05North Korean ICBM factory upgrade project resumes, expands: Imagery 06Ruse or revolution? Analyzing North Korea’s new drone and AEW&C aircraft 07New construction underway near North Korean aircraft factories amid drone push 08What Americans think about travel to North Korea, 8 years after Warmbier’s death

News

North Korea hackers go after business executives in latest info-stealing scheme

Espionage operation dubbed ‘Chaotic Capybara’ spreads macOS malware to both job seekers and the C-suite, researchers say

Shreyas Reddy March 28, 2025

North Korea hackers go after business executives in latest info-stealing scheme

An illustration of the Chaotic Capybara malware infecting a computer | Image: NK Pro

North Korean cybercriminals have deployed a new malware to steal data from potential job seekers and executives, continuing their elaborate espionage operations targeting the cryptocurrency and blockchain sectors through fake recruitment schemes.

The DPRK threat actor Velvet Chollima, also known as Kimsuky, distributed a new information-stealing program that researchers have named “Chaotic Capybara,” according to a new report released by the British-Argentine-Uruguayan cybersecurity firm Birmingham Cyber Arms (BCA) on Tuesday.

Researchers linked the new malware targeting Apple computers to North Korea’s ongoing Contagious Interview campaign targeting the crypto-financial sector and Web3 ecosystem built around

North Korea hackers go after business executives in latest info-stealing scheme

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy