North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign

July 2, 2025 invoker category_news

Security Update News

Update Information

Title North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign
Update ID THN:6FA14351D147ADABD0F270E28ED49322
Type thn
Published 2025-07-02T17:09:00
Last Updated 2025-07-02T17:09:43

Security Impact

Severity NONE

AI Analysis

AI Description North Korean hackers are targeting Web3 and cryptocurrency businesses with NimDoor malware, using social engineering tactics like fake Zoom meetings to deliver malicious scripts. The malware employs process injection and encrypted WebSocket communications, with persistence mechanisms and credential harvesting capabilities.
AI Severity High
AI Vendor Zoom
AI Product Zoom SDK
AI Version Unspecified

Update Details

View Advisory Details

πŸ’­ Join the Security Discussion

πŸ”’ Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.