North Korea

US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT Workers

Cryptocurrency, fake IT workers, North Korea, seized, Tracking & Law Enforcement /

US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT Workers 2025-06-09 at 13:46 By Ionut Arghire The US is seeking the forfeiture of $7.74 million in cryptocurrency in frozen wallets tied to North Korean fake IT workers schemes. The post US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT […]

React to this headline:

Loading spinner

US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT Workers Read More »

How well do you know your remote IT worker?

cybersecurity, Don't miss, Hot stuff, Insider Threat, News, North Korea, remote working, threat, tips /

How well do you know your remote IT worker? 2025-05-27 at 08:06 By Sinisa Markovic Is the remote IT worker you recently hired really who he says he is? Fake IT workers are slipping into companies around the world, gaining access to sensitive data. Recently, more of these schemes have been linked to North Korea.

React to this headline:

Loading spinner

How well do you know your remote IT worker? Read More »

Nation-state APTs ramp up attacks on Ukraine and the EU

China, cyber espionage, cybersecurity, ESET, EU, News, North Korea, report, Russian Federation, survey, Ukraine /

Nation-state APTs ramp up attacks on Ukraine and the EU 2025-05-21 at 07:02 By Help Net Security Russian APT groups intensified attacks against Ukraine and the EU, exploiting zero-day vulnerabilities and deploying wipers, according to ESET. Ukraine faces rising cyber threats The Russia-aligned Sandworm group intensified destructive operations against Ukrainian energy companies, deploying a new

React to this headline:

Loading spinner

Nation-state APTs ramp up attacks on Ukraine and the EU Read More »

SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers

China, cyberespionage, fake IT workers, Incident Response, North Korea, SentinelOne /

SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers 2025-05-01 at 11:32 By Eduard Kovacs SentinelOne has shared some information on the types of threat actors that have targeted the security firm recently. The post SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers Read More »

M-Trends 2025: State-Sponsored IT Workers Emerge as Global Threat

Mandiant, North Korea, report, Uncategorized /

M-Trends 2025: State-Sponsored IT Workers Emerge as Global Threat 2025-04-25 at 16:32 By Kevin Townsend Mandiant’s latest threat report shows how attackers adapt faster than defenses, shifting strategies toward credential theft and insider threats. The post M-Trends 2025: State-Sponsored IT Workers Emerge as Global Threat appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

M-Trends 2025: State-Sponsored IT Workers Emerge as Global Threat Read More »

South Korean Companies Targeted by Lazarus via Watering Hole Attacks, Zero-Days

Lazarus, Nation-State, North Korea, South Korea, watering hole, Zero-Day /

South Korean Companies Targeted by Lazarus via Watering Hole Attacks, Zero-Days 2025-04-25 at 14:31 By Ionut Arghire Multiple South Korean organizations across industries have been targeted in a recent Lazarus campaign dubbed Operation SyncHole. The post South Korean Companies Targeted by Lazarus via Watering Hole Attacks, Zero-Days appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

South Korean Companies Targeted by Lazarus via Watering Hole Attacks, Zero-Days Read More »

North Korean Cryptocurrency Thieves Caught Hijacking Zoom ‘Remote Control’ Feature

Bybit, Cryptocurrency, Fraud & Identity Theft, Lazarus, Malware & Threats, North Korea, social engineering, Zoom /

North Korean Cryptocurrency Thieves Caught Hijacking Zoom ‘Remote Control’ Feature 2025-04-21 at 19:02 By Ryan Naraine North Korean cryptocurrency thieves abusing Zoom Remote collaboration feature to target cryptocurrency traders with malware. The post North Korean Cryptocurrency Thieves Caught Hijacking Zoom ‘Remote Control’ Feature appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

North Korean Cryptocurrency Thieves Caught Hijacking Zoom ‘Remote Control’ Feature Read More »

North Korea’s IT Operatives Are Exploiting Remote Work Globally

cybercrime, Nation-State, North Korea /

North Korea’s IT Operatives Are Exploiting Remote Work Globally 2025-04-02 at 16:32 By Kevin Townsend The global rise of North Korean IT worker infiltration poses a serious cybersecurity risk—using fake identities, remote access, and extortion to compromise organizations. The post North Korea’s IT Operatives Are Exploiting Remote Work Globally appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

North Korea’s IT Operatives Are Exploiting Remote Work Globally Read More »

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks

ClickFix, Cryptocurrency, Nation-State, North Korea /

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks 2025-04-02 at 13:50 By Ionut Arghire North Korea’s Lazarus hackers are using the ClickFix technique for malware deployment in fresh attacks targeting the cryptocurrency ecosystem. The post Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks Read More »

North Korean IT workers set their sights on European organizations

blockchain, CMS, data theft, Don't miss, EU, extortion, Hot stuff, Insider Threat, News, North Korea, UK, web application, web development /

North Korean IT workers set their sights on European organizations 2025-04-02 at 13:05 By Zeljka Zorz North Korean IT workers are expanding their efforts beyond the US, and are seeking to fraudulently gain employment with organizations around the world, but most especially in Europe. According to Google’s threat researchers, they are also increasingly attempting to

React to this headline:

Loading spinner

North Korean IT workers set their sights on European organizations Read More »

North Korean Hackers Distributed Android Spyware via Google Play

APT, KoSpy, North Korea, ScarCruft, spyware, Uncategorized /

North Korean Hackers Distributed Android Spyware via Google Play 2025-03-13 at 15:01 By Eduard Kovacs The North Korea-linked APT37 has been observed targeting Android users with spyware distributed via Google Play. The post North Korean Hackers Distributed Android Spyware via Google Play appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

North Korean Hackers Distributed Android Spyware via Google Play Read More »

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

Bybit, Cryptocurrency, Ethereum, Lazarus, Malware & Threats, Nation-State, North Korea, SafeWallet /

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist 2025-03-07 at 01:09 By Ryan Naraine The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file. The post How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist Read More »

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub

fake IT workers, Nation-State, North Korea /

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub 2025-03-05 at 15:03 By Ionut Arghire North Korean fake IT workers are creating personas on GitHub to land blockchain developer jobs at US and Japanese firms. The post North Korean Fake IT Workers Pose as Blockchain Developers on GitHub appeared first on SecurityWeek. This

React to this headline:

Loading spinner

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub Read More »

FBI Says North Korea Hacked Bybit as Details of $1.5B Heist Emerge

Bybit, Bybit hack, Cryptocurrency, cybercrime, Featured, Lazarus, North Korea, TraderTraitor /

FBI Says North Korea Hacked Bybit as Details of $1.5B Heist Emerge 2025-02-27 at 13:05 By Eduard Kovacs The FBI has attributed the Bybit hack to a North Korean group named TraderTraitor as more technical details of the attack have come to light. The post FBI Says North Korea Hacked Bybit as Details of $1.5B

React to this headline:

Loading spinner

FBI Says North Korea Hacked Bybit as Details of $1.5B Heist Emerge Read More »

Leader of North Korean Hackers Sanctioned by EU

EU, Europe, Government, Lazarus, North Korea, Sanctions /

Leader of North Korean Hackers Sanctioned by EU 2025-02-25 at 15:49 By Eduard Kovacs The EU has announced new sanctions against entities aiding Russia’s war against Ukraine, including an individual who leads North Korean hackers. The post Leader of North Korean Hackers Sanctioned by EU appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Leader of North Korean Hackers Sanctioned by EU Read More »

$1.5 Billion Bybit Heist Linked to North Korean Hackers

Bybit, Cryptocurrency, cybercrime, Featured, heist, Lazarus, North Korea /

$1.5 Billion Bybit Heist Linked to North Korean Hackers 2025-02-24 at 12:05 By Eduard Kovacs Companies and experts have found evidence linking the $1.5 billion Bybit cryptocurrency heist to North Korean Lazarus hackers. The post $1.5 Billion Bybit Heist Linked to North Korean Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

$1.5 Billion Bybit Heist Linked to North Korean Hackers Read More »

Freelance Software Developers in North Korean Malware Crosshairs

AnyDesk, DeceptiveDevelopment, ESET, fake IT workers, LinkedIn, Malware & Threats, Nation-State, North Korea /

Freelance Software Developers in North Korean Malware Crosshairs 2025-02-21 at 18:01 By Ionut Arghire ESET says hundreds of freelance software developers have fallen victim to North Korean hackers posing as recruiters. The post Freelance Software Developers in North Korean Malware Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Freelance Software Developers in North Korean Malware Crosshairs Read More »

Hackers pose as employers to steal crypto, login credentials

cyber espionage, cybercrime, Don't miss, ESET, News, North Korea, research, scams, threats /

Hackers pose as employers to steal crypto, login credentials 2025-02-20 at 12:03 By Help Net Security Since early 2024, ESET researchers have been tracking DeceptiveDevelopment, a series of malicious campaigns linked to North Korea-aligned operators. Disguising themselves as software development recruiters, these threat actors lure victims with fake job offers and deliver software projects embedded

React to this headline:

Loading spinner

Hackers pose as employers to steal crypto, login credentials Read More »

North Korean hackers spotted using ClickFix tactic to deliver malware

Don't miss, Hot stuff, Malware, News, North Korea, PowerShell, social engineering, Windows /

North Korean hackers spotted using ClickFix tactic to deliver malware 2025-02-13 at 18:34 By Zeljka Zorz North Korean state-sponsored group Kimsuky (aka Emerald Sleet, aka VELVET CHOLLIMA) is attempting to deliver malware to South Korean targets by leveraging the so-called “ClickFix” tactic. A relatively new tactic The ClickFix social engineering tactic has been dubbed thus

React to this headline:

Loading spinner

North Korean hackers spotted using ClickFix tactic to deliver malware Read More »

Can AI Early Warning Systems Reboot the Threat Intel Industry?

APT, Artificial Intelligence, China, Google, Iran, Malware & Threats, Microsoft, North Korea, OpenAI, Threat Intelligence /

Can AI Early Warning Systems Reboot the Threat Intel Industry? 2025-02-10 at 13:02 By Ryan Naraine News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry? The post Can AI Early Warning Systems Reboot the

React to this headline:

Loading spinner

Can AI Early Warning Systems Reboot the Threat Intel Industry? Read More »

Scroll to Top