🚨SlowMist Security Alert🚨 SlowMist recently received intelligence indicating that the Lazarus APT group is using a new stealer called OtterCookie in targeted attacks on crypto & finance pros. 🎭Tactics: - Fake job interviews/investor calls - Deepfake videos to impersonate recruiters - Malware disguised as “coding challenges” or “updates” 😈Steals: - Browser-stored login credentials - Passwords & certificates from macOS Keychain - Wallet info & private keys 🛡️Security Recommendations: 🔹Treat unsolicited job/investment offers and remote interviews with caution. 🔹Never run unknown binaries, especially if presented as “technical challenges” or “update packages.” 🔹Enhance EDR capabilities and monitor for abnormal activity. Use antivirus tools and regularly audit your endpoints. ⚠️Stay safe — always verify before you trust. #Lazarus #APT #OtterCookie #CryptoSecurity