%22%3E%3Crect%20fill%3D%22%23ffb300%22%20width%3D%22120%22%20height%3D%22120%22%20x%3D%220%22%20y%3D%220%22%20%2F%3E%3Cg%20transform%3D%22translate(22%2068)%22%3E%3Crect%20x%3D%2224%22%20y%3D%226%22%20width%3D%2227%22%20height%3D%228%22%20rx%3D%224%22%20fill%3D%22%23000%22%20fill-opacity%3D%22.8%22%2F%3E%3C%2Fg%3E%3Cg%20transform%3D%22translate(8%2020)%22%3E%3Cpath%20d%3D%22M29.27%209.68c-2.55.13-4.96%202.24-6.25%204.15-1.48-1.76-4.1-3.6-6.65-3.47-5.48.28-8.85%203.8-8.63%208.1.3%205.72%204.88%208.89%209.7%2012.24%201.71%201.15%205%204.15%205.42%204.82.42.67%202.14.6%202.58-.13a37.8%2037.8%200%200%201%204.9-5.36c4.43-3.84%208.66-7.47%208.36-13.2-.23-4.3-3.95-7.44-9.43-7.15ZM87.63%2010.36c-2.55-.14-5.17%201.7-6.65%203.47-1.3-1.9-3.7-4.02-6.25-4.15-5.48-.29-9.2%202.86-9.43%207.16-.3%205.72%203.93%209.35%208.36%2013.19%201.6%201.32%204.55%204.64%204.9%205.36.35.7%202.06.82%202.58.13.51-.7%203.7-3.67%205.42-4.82%204.81-3.35%209.4-6.52%209.7-12.24.22-4.3-3.15-7.82-8.63-8.1Z%22%20fill%3D%22%23FF5353%22%20fill-opacity%3D%22.8%22%2F%3E%3C%2Fg%3E%3C%2Fg%3E%3C%2Fsvg%3E)
朝鲜黑客部署新型恶意软件,支持从浏览器扩展窃取凭证
2025-06-20 06:35:24
分享至 
ChainCatcher 消息,据 Decrypt 报道,威胁情报研究公司 Cisco Talos 周三报告,朝鲜黑客通过伪装成 Coinbase 和 Uniswap 等公司招聘人员的假面试,针对加密货币专业人士部署了名为“PylangGhost”的新型 Python 远程访问木马,该恶意软件与朝鲜相关著名黑客团体“Famous Chollima”(又称“Wagemole”)有关。
该恶意软件可从超过 80 个浏览器扩展中窃取凭证,包括 Metamask 和 1Password 并实现持久化远程访问。攻击主要针对 Windows 系统以及 macOS 用户,Linux 系统未受当前攻击波及。
最新快讯
Core DAO 质押钱包 14 小时前向 Binance 转入 1,803 枚 BTC
ChainCatcher
2025-07-14 00:39:36
六家参与 PUMP 公售的 CEX 已收到 PUMP 代币
ChainCatcher
2025-07-14 00:37:05
分析师:比特币尚未进入极度乐观状态,但情况可能很快改变
ChainCatcher
2025-07-14 00:37:02
美国副总统万斯抨击美联储,称其完全睡着了
ChainCatcher
2025-07-14 00:32:13
pump.fun 公售排名前 340 的地址总计投入超 3 亿美元,占比达 60%
ChainCatcher
2025-07-14 00:31:39
