Lazarus Group has launched a targeted attack utilizing a new JavaScript implant named Marstech1, discovered in a now-defunct GitHub profile. The operation, referred to as Marstech Mayhem, has impacted 233 confirmed victims across multiple regions. Marstech1 collects system information and poses threats to cryptocurrency wallets such as MetaMask, Exodus, and Atomic. The implant demonstrates advanced obfuscation techniques, highlighting an ongoing risk to developers and a potential supply chain vulnerability.
"The profile mentioned web dev skills and learning blockchain which is in alignment to the interests of Lazarus."
Collection
[
|
...
]