Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
North Korea-linked threat actors spread macOS NimDoor malware via fake Zoom updates
Malware and Vulnerabilities
July 07, 2025
securityaffairs
Victims are tricked into installing the malware through phishing links sent via Calendly or Telegram. NimDoor is written in Nim, uses encrypted communications, and steals data like browser history and Keychain credentials.
Read More
North Korean hackers
cryptocurrency industry
Web3
NimDoor
Phishing Links
Publisher
Previous
Cybercriminals jump on .es domain for credential phishi ...
Trends, Reports, Analysis
Next
Ingram Micro confirms ransomware behind multi-day outag ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/image_bank/442a_shutterstock_1696828393.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/839c_shutterstock_639536698.jpg)
