North Korea-linked Lazarus APT uses a Mac variant of the Dacls RAT
Security Affairs
MAY 9, 2020
This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. The Mac version uses the same AES key and IV as the Linux variant to encrypt and decrypt the config file.
Let's personalize your content