North Korea

North Korea’s IT Operatives Are Exploiting Remote Work Globally

cybercrime, Nation-State, North Korea /

North Korea’s IT Operatives Are Exploiting Remote Work Globally 2025-04-02 at 16:32 By Kevin Townsend The global rise of North Korean IT worker infiltration poses a serious cybersecurity risk—using fake identities, remote access, and extortion to compromise organizations. The post North Korea’s IT Operatives Are Exploiting Remote Work Globally appeared first on SecurityWeek. This article […]

React to this headline:

Loading spinner

North Korea’s IT Operatives Are Exploiting Remote Work Globally Read More »

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks

ClickFix, Cryptocurrency, Nation-State, North Korea /

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks 2025-04-02 at 13:50 By Ionut Arghire North Korea’s Lazarus hackers are using the ClickFix technique for malware deployment in fresh attacks targeting the cryptocurrency ecosystem. The post Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks Read More »

North Korean IT workers set their sights on European organizations

blockchain, CMS, data theft, Don't miss, EU, extortion, Hot stuff, Insider Threat, News, North Korea, UK, web application, web development /

North Korean IT workers set their sights on European organizations 2025-04-02 at 13:05 By Zeljka Zorz North Korean IT workers are expanding their efforts beyond the US, and are seeking to fraudulently gain employment with organizations around the world, but most especially in Europe. According to Google’s threat researchers, they are also increasingly attempting to

React to this headline:

Loading spinner

North Korean IT workers set their sights on European organizations Read More »

North Korean Hackers Distributed Android Spyware via Google Play

APT, KoSpy, North Korea, ScarCruft, spyware, Uncategorized /

North Korean Hackers Distributed Android Spyware via Google Play 2025-03-13 at 15:01 By Eduard Kovacs The North Korea-linked APT37 has been observed targeting Android users with spyware distributed via Google Play. The post North Korean Hackers Distributed Android Spyware via Google Play appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

North Korean Hackers Distributed Android Spyware via Google Play Read More »

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

Bybit, Cryptocurrency, Ethereum, Lazarus, Malware & Threats, Nation-State, North Korea, SafeWallet /

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist 2025-03-07 at 01:09 By Ryan Naraine The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file. The post How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist Read More »

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub

fake IT workers, Nation-State, North Korea /

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub 2025-03-05 at 15:03 By Ionut Arghire North Korean fake IT workers are creating personas on GitHub to land blockchain developer jobs at US and Japanese firms. The post North Korean Fake IT Workers Pose as Blockchain Developers on GitHub appeared first on SecurityWeek. This

React to this headline:

Loading spinner

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub Read More »

FBI Says North Korea Hacked Bybit as Details of $1.5B Heist Emerge

Bybit, Bybit hack, Cryptocurrency, cybercrime, Featured, Lazarus, North Korea, TraderTraitor /

FBI Says North Korea Hacked Bybit as Details of $1.5B Heist Emerge 2025-02-27 at 13:05 By Eduard Kovacs The FBI has attributed the Bybit hack to a North Korean group named TraderTraitor as more technical details of the attack have come to light. The post FBI Says North Korea Hacked Bybit as Details of $1.5B

React to this headline:

Loading spinner

FBI Says North Korea Hacked Bybit as Details of $1.5B Heist Emerge Read More »

Leader of North Korean Hackers Sanctioned by EU

EU, Europe, Government, Lazarus, North Korea, Sanctions /

Leader of North Korean Hackers Sanctioned by EU 2025-02-25 at 15:49 By Eduard Kovacs The EU has announced new sanctions against entities aiding Russia’s war against Ukraine, including an individual who leads North Korean hackers. The post Leader of North Korean Hackers Sanctioned by EU appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Leader of North Korean Hackers Sanctioned by EU Read More »

$1.5 Billion Bybit Heist Linked to North Korean Hackers

Bybit, Cryptocurrency, cybercrime, Featured, heist, Lazarus, North Korea /

$1.5 Billion Bybit Heist Linked to North Korean Hackers 2025-02-24 at 12:05 By Eduard Kovacs Companies and experts have found evidence linking the $1.5 billion Bybit cryptocurrency heist to North Korean Lazarus hackers. The post $1.5 Billion Bybit Heist Linked to North Korean Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

$1.5 Billion Bybit Heist Linked to North Korean Hackers Read More »

Freelance Software Developers in North Korean Malware Crosshairs

AnyDesk, DeceptiveDevelopment, ESET, fake IT workers, LinkedIn, Malware & Threats, Nation-State, North Korea /

Freelance Software Developers in North Korean Malware Crosshairs 2025-02-21 at 18:01 By Ionut Arghire ESET says hundreds of freelance software developers have fallen victim to North Korean hackers posing as recruiters. The post Freelance Software Developers in North Korean Malware Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Freelance Software Developers in North Korean Malware Crosshairs Read More »

Hackers pose as employers to steal crypto, login credentials

cyber espionage, cybercrime, Don't miss, ESET, News, North Korea, research, scams, threats /

Hackers pose as employers to steal crypto, login credentials 2025-02-20 at 12:03 By Help Net Security Since early 2024, ESET researchers have been tracking DeceptiveDevelopment, a series of malicious campaigns linked to North Korea-aligned operators. Disguising themselves as software development recruiters, these threat actors lure victims with fake job offers and deliver software projects embedded

React to this headline:

Loading spinner

Hackers pose as employers to steal crypto, login credentials Read More »

North Korean hackers spotted using ClickFix tactic to deliver malware

Don't miss, Hot stuff, Malware, News, North Korea, PowerShell, social engineering, Windows /

North Korean hackers spotted using ClickFix tactic to deliver malware 2025-02-13 at 18:34 By Zeljka Zorz North Korean state-sponsored group Kimsuky (aka Emerald Sleet, aka VELVET CHOLLIMA) is attempting to deliver malware to South Korean targets by leveraging the so-called “ClickFix” tactic. A relatively new tactic The ClickFix social engineering tactic has been dubbed thus

React to this headline:

Loading spinner

North Korean hackers spotted using ClickFix tactic to deliver malware Read More »

Can AI Early Warning Systems Reboot the Threat Intel Industry?

APT, Artificial Intelligence, China, Google, Iran, Malware & Threats, Microsoft, North Korea, OpenAI, Threat Intelligence /

Can AI Early Warning Systems Reboot the Threat Intel Industry? 2025-02-10 at 13:02 By Ryan Naraine News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry? The post Can AI Early Warning Systems Reboot the

React to this headline:

Loading spinner

Can AI Early Warning Systems Reboot the Threat Intel Industry? Read More »

How Lazarus Group built a cyber espionage empire

cyber attribution, cybersecurity, Don't miss, News, North Korea, report, SecurityScorecard, supply chain compromise /

How Lazarus Group built a cyber espionage empire 2025-01-29 at 11:04 By Help Net Security Since September 2024, SecurityScorecard’s STRIKE team has been investigating Lazarus Group’s activity, uncovering key details about their infrastructure. Despite variations in payload delivery and obfuscation techniques, the campaign relied on a consistent C2 framework. Hidden control panel Through deep analysis,

React to this headline:

Loading spinner

How Lazarus Group built a cyber espionage empire Read More »

US Charges Five People Over North Korean IT Worker Scheme

charged, cybercrime, fake IT workers, North Korea /

US Charges Five People Over North Korean IT Worker Scheme 2025-01-24 at 18:01 By Ionut Arghire The US has announced charges against five individuals involved in a fake IT workers scheme to funnel funds to North Korea. The post US Charges Five People Over North Korean IT Worker Scheme appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

US Charges Five People Over North Korean IT Worker Scheme Read More »

North Korean Fake IT Workers More Aggressively Extorting Enterprises

fake IT workers, FBI, Nation-State, North Korea /

North Korean Fake IT Workers More Aggressively Extorting Enterprises 2025-01-24 at 18:01 By Ionut Arghire North Korean fake IT workers are more aggressively extorting their employers in response to law enforcement actions. The post North Korean Fake IT Workers More Aggressively Extorting Enterprises appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

North Korean Fake IT Workers More Aggressively Extorting Enterprises Read More »

North Korean IT workers are extorting employers, FBI warns

data theft, Don't miss, enterprise, extortion, Hot stuff, News, North Korea, USA /

North Korean IT workers are extorting employers, FBI warns 2025-01-24 at 16:48 By Zeljka Zorz The FBI is on a mission to raise awareness about the threat that North Korean IT workers present to organizations in the US and around the world. While corporate espionage comes to mind first, the threat goes beyond that: “In

React to this headline:

Loading spinner

North Korean IT workers are extorting employers, FBI warns Read More »

Cryptocurrency hackers stole $2.2 billion from platforms in 2024

Bitcoin, Chainalysis, Cryptocurrency, Don't miss, hacking, Hot stuff, News, North Korea /

Cryptocurrency hackers stole $2.2 billion from platforms in 2024 2024-12-19 at 17:18 By Zeljka Zorz $2.2 billion worth of cryptocurrency was stolen from various platforms in 2024, Chainalysis’ 2025 Crypto Crime Report has revealed. Of that sum, $1.34 billion was stolen by North Korea-affiliated hackers, across 47 hacking incidents (out of 303). Most targeted organizations

React to this headline:

Loading spinner

Cryptocurrency hackers stole $2.2 billion from platforms in 2024 Read More »

Active network of North Korean IT front companies exposed

China, Don't miss, Hot stuff, Insider Threat, News, North Korea, Palo Alto Networks, SentinelOne, software development, tips, USA /

Active network of North Korean IT front companies exposed 2024-11-21 at 16:18 By Zeljka Zorz An analysis of the websites belonging to companies that served as a front for getting North Korean IT workers remote jobs with businesses worldwide has revealed an active network of such companies originating in China. Unearthing North Korean IT front

React to this headline:

Loading spinner

Active network of North Korean IT front companies exposed Read More »

North Korean hackers employ new tactics to compromise crypto-related businesses

APT, backdoor, Cryptocurrency, Don't miss, financial industry, Hot stuff, macOS, Malware, News, North Korea, phishing, SentinelOne /

North Korean hackers employ new tactics to compromise crypto-related businesses 2024-11-07 at 13:49 By Zeljka Zorz North Korean hackers are targeting crypto-related businesses with phishing emails and novel macOS-specific malware. The crypto-related phishing campaign Since July 2024, phishing emails seemingly containing helpful information on risks related to the rise of the price of Bitcoin have

React to this headline:

Loading spinner

North Korean hackers employ new tactics to compromise crypto-related businesses Read More »

Scroll to Top