North Korean hackers from the notorious Lazarus group used AI deepfakes to impersonate company executives during a fake Zoom call, successfully tricking an employee at a cryptocurrency foundation into downloading malware. The sophisticated social engineering attack, orchestrated by the BlueNoroff unit, demonstrates how state-sponsored cybercriminals are weaponizing AI technology to target high-value cryptocurrency assets, with North Korea having stolen at least $659 million in digital currency in 2024 alone.
The attack methodology: The hackers initiated contact through Telegram, sending a Calendly link that redirected the victim to a fake Zoom domain under their control.
• During the group video call, multiple AI-generated deepfakes of senior company leadership and external contacts convinced the employee they needed to download a special Zoom extension to fix microphone issues.
• The malicious “extension” was actually macOS malware hosted on a lookalike domain at “https[://]support[.]us05web-zoom[.]biz.”
What the malware could do: Huntress, a cybersecurity company, recovered eight different malicious programs from the infected Mac, creating a comprehensive surveillance toolkit.
• The malware enabled keylogging (recording every keystroke), screen recording, and collection of cryptocurrency-related files.
• It specifically targeted Macs running Apple’s Arm-based chips and would silently install Rosetta 2 if needed to run older x86 programs.
• The attack effectively backdoored the victim’s system, giving hackers extensive access to sensitive information.
Why this matters: The incident highlights the evolving sophistication of North Korean cyber operations and the growing threat to macOS users.
• Remote workers are “often ideal targets” for these types of attacks, according to Huntress.
• “Over the last few years, we have seen macOS become a larger target for threat actors, especially with regard to highly sophisticated, state-sponsored attackers,” the cybersecurity vendor noted.
The bigger picture: This attack represents a significant escalation in social engineering tactics, combining AI deepfakes with traditional malware distribution methods to target the lucrative cryptocurrency sector.
• The Lazarus group’s BlueNoroff unit has become increasingly focused on cryptocurrency theft as part of North Korea’s broader cybercrime strategy.
• The use of AI-generated video calls marks a new frontier in deception technology, making it increasingly difficult for targets to distinguish between legitimate and malicious communications.
Recent Stories
DOE fusion roadmap targets 2030s commercial deployment as AI drives $9B investment
The Department of Energy has released a new roadmap targeting commercial-scale fusion power deployment by the mid-2030s, though the plan lacks specific funding commitments and relies on scientific breakthroughs that have eluded researchers for decades. The strategy emphasizes public-private partnerships and positions AI as both a research tool and motivation for developing fusion energy to meet data centers' growing electricity demands. The big picture: The DOE's roadmap aims to "deliver the public infrastructure that supports the fusion private sector scale up in the 2030s," but acknowledges it cannot commit to specific funding levels and remains subject to Congressional appropriations. Why...
Oct 17, 2025Tying it all together: Credo’s purple cables power the $4B AI data center boom
Credo, a Silicon Valley semiconductor company specializing in data center cables and chips, has seen its stock price more than double this year to $143.61, following a 245% surge in 2024. The company's signature purple cables, which cost between $300-$500 each, have become essential infrastructure for AI data centers, positioning Credo to capitalize on the trillion-dollar AI infrastructure expansion as hyperscalers like Amazon, Microsoft, and Elon Musk's xAI rapidly build out massive computing facilities. What you should know: Credo's active electrical cables (AECs) are becoming indispensable for connecting the massive GPU clusters required for AI training and inference. The company...
Oct 17, 2025Vatican launches Latin American AI network for human development
The Vatican hosted a two-day conference bringing together 50 global experts to explore how artificial intelligence can advance peace, social justice, and human development. The event launched the Latin American AI Network for Integral Human Development and established principles for ethical AI governance that prioritize human dignity over technological advancement. What you should know: The Pontifical Academy of Social Sciences, the Vatican's research body for social issues, organized the "Digital Rerum Novarum" conference on October 16-17, combining academic research with practical AI applications. Participants included leading experts from MIT, Microsoft, Columbia University, the UN, and major European institutions. The conference...