back to article Nork hackers Lazarus brought back to life by AppleJeus to infect Macs for the first time

The malware-making gang of hackers dubbed Lazarus is said to be behind a crypto-coin-stealing nasty that infects Macs. This would be the first time this group has targeted Apple desktops. Kaspersky Lab eggheads said today the fun-bucks generator, dubbed AppleJeus, is a port of another piece of malware Lazarus uses to …

  1. sanmigueelbeer Silver badge

    With very little avenue for an income stream, something has got to "give".

  2. WolfFan Silver badge

    Trojans, again

    And once again this is a trojan. The user must locate, download, and install the software in the first place, right? I just Googled 'Celas Trade Pro'. The fourth hit was a Securelist page about AppleJesus. The third was an ITWire page about the Lazarus group and bank hacking, and the first two were links to Celas LLC. The first 10 hits on DuckDuckGo were to news stories about how Celas Trade Pro was a trojan. Over at Bing, the first hit (an ad) was for E*Trade, but the rest of the first 10 hits were quite similar to the results from DuckDuckGo. At Yahoo, the first two hits were ads (E*Trade and Amazon, apparently you can get anything at Amazon, according to Yahoo) but the rest of the top ten were similar to DuckDuckGo and Bing. It seems that it might be a good idea to avoid Google and Yahoo, but most commentards already know that.

    1. Anonymous Coward
      Anonymous Coward

      Re: Trojans, again

      I didn't realize that most malware victims become infected only by actively searching for the malware. Good to know.

      1. WolfFan Silver badge

        Re: Trojans, again

        When its a trojan pretending to be a legit trading app, yes you have to hunt it down and install it yourself. There might be some spam promos roaming about, but by this time most email services filter out most spam.

    2. JohnG

      Re: Trojans, again

      "I just Googled 'Celas Trade Pro'....."

      If you try those searches again but with results from any date older than two weeks, you will see nothing about hacking, trojans or stolen cryptocurrency. It is so easy to be clever with hindsight.

      One of the problems with cryptocurrency mining/trading apps is that many AV products will mark all of them as malware.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021