North Korean state-sponsored hackers have targeted the blockchain engineers from an unnamed cryptocurrency exchange through Discord. These developers were targeted by a novel macOS malware known as KANDYKORN.
According to a report by cybersecurity researchers Ricardo Ungureanu, Seth Goodwin, and Andrew Pease, threat actors lured blockchain engineers using a Python application to secure initial access to the hacking environment.