Cybersecurity Headlines DarkSword emerges, "ShieldGuard" dismantled, NK IT worker army rakes in money
14 snips
Mar 19, 2026 A newly revealed iOS exploit kit is said to steal credentials and crypto wallets. A malicious crypto browser extension was dismantled after researchers traced its data-harvesting. Reports claim a massive network of fake IT workers is generating huge illicit revenue. AI tools are outpacing humans in hacking contests and raising fresh concerns about automated attacks.
AI Snips
Chapters
Transcript
Episode notes
DarkSword iOS Exploit Kit Steals Wallets And Messages
- DarkSword is a newly discovered iOS exploit kit tied to suspected Russian-backed groups that targeted users in Ukraine and beyond.
- It stole passwords, messages, and crypto wallets from millions of iPhones running older iOS versions before Apple patched the vulnerabilities.
ShieldGuard Extension Was A Wallet-Harvesting Scam
- ShieldGuard posed as a wallet-protecting browser extension but actually harvested wallet credentials, browsing activity, and allowed remote code execution.
- Okta Threat Intelligence helped dismantle the campaign by removing the extension, shutting down infrastructure, and cutting attacker access.
North Korea's Fake IT Workforce Fuels Revenue And Espionage
- North Korea runs up to 100,000 fake IT workers across 40+ countries generating about $500 million per year for the regime.
- The operation places people in remote tech jobs under stolen or fake identities to access sensitive systems and earn high salaries.