North Korean Hackers Use New macOS Malware NimDoor to Target Web3 and Cryptocurrency Organizations

State-sponsored North Korean hackers are using a new family of macOS malware called NimDoor in a campaign targeting web3 and cryptocurrency organizations. NimDoor is designed to reactivate itself even after being deleted. This resilience capability makes detecting and eradicating the malware particularly challenging. The article does not provide specific technical details on how NimDoor operates, but it is clear that this threat poses a significant challenge for the targeted organizations.