North Korea

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

Mastra, North Korea, NPM, supply chain attack, Supply Chain Security /

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack 2026-06-22 at 14:10 By Ionut Arghire A malicious dependency the attackers added to over 140 Mastra packages fetches a payload targeting cryptocurrency extensions. The post North Korean Hackers Blamed for Mastra NPM Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from […]

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack Read More »

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns

APT, China, cybercrime, ESET, Iran, News, North Korea, report, Russian Federation, Ukraine /

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns 2026-05-28 at 12:42 By Sinisa Markovic Geopolitical pressure drove much of the state-sponsored cyber activity recorded between October 2025 and March 2026, according to ESET’s latest APT Activity Report. Espionage groups aligned with China, North Korea, Russia, and Iran adjusted their

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns Read More »

Helping North Korean IT remote workers is becoming a fast track to prison

FBI, law enforcement, News, North Korea, remote working /

Helping North Korean IT remote workers is becoming a fast track to prison 2026-05-08 at 12:40 By Sinisa Markovic Two U.S. nationals were sentenced to 18 months in prison for operating “laptop farms” that helped North Korean IT workers gain employment at nearly 70 American companies, generating more than $1.2 million for Pyongyang’s government. Although

Helping North Korean IT remote workers is becoming a fast track to prison Read More »

North Korean hackers trojanize gaming platform to spy on ethnic Koreans in China

attack, cybercrime, ESET, Malware, News, North Korea, online gaming, supply chain attacks, threats /

North Korean hackers trojanize gaming platform to spy on ethnic Koreans in China 2026-05-05 at 13:21 By Sinisa Markovic A gaming platform built for ethnic Koreans in China has been serving backdoored Windows and Android software to its users since late 2024. The platform, sqgame[.]net, hosts traditional card and board games for a community that

North Korean hackers trojanize gaming platform to spy on ethnic Koreans in China Read More »

AI is speeding up nation-state cyber programs

CISO, cyber risk, cybersecurity, Don't miss, Features, Government, Hot stuff, Microsoft, NATO, News, North Korea, opinion, strategy /

AI is speeding up nation-state cyber programs 2026-04-24 at 08:40 By Mirko Zorz Im this Help Net Security interview, Kaja Ciglic, Senior Director, Cybersecurity Policy and Diplomacy at Microsoft, discusses how nation-state cyber programs have changed over three years. Cyber has become a core instrument of state power, integrated with military, economic, and diplomatic tools.

AI is speeding up nation-state cyber programs Read More »

With AI’s help, North Korean hackers stumbled into a near-undetectable attack

AI, Crypto, Don't miss, Expel, government-backed attacks, Hot stuff, malware detection, News, North Korea, social engineering, theft, web development /

With AI’s help, North Korean hackers stumbled into a near-undetectable attack 2026-04-24 at 08:22 By Zeljka Zorz For many years, state-sponsored hacking was defined by human expertise in finding security holes, writing malware and exploits, pulling off social engineering and phishing attacks, and much more. Since the advent of LLM-powered AI assistants and tools, less

With AI’s help, North Korean hackers stumbled into a near-undetectable attack Read More »

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks

macOS malware, Nation-State, North Korea /

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks 2026-04-22 at 14:47 By Ionut Arghire The campaigns focus on financial organizations, including cryptocurrency, venture capital, and blockchain entities. The post North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks Read More »

$290 Million Kelp DAO Crypto Heist Blamed on North Korea

Cryptocurrency, cryptocurrency heist, cybercrime, DeFi, Featured, Kelp DAO, North Korea /

$290 Million Kelp DAO Crypto Heist Blamed on North Korea 2026-04-21 at 14:08 By Ionut Arghire The hackers targeted LayerZero’s DVN, compromising certain RPCs and DDoSing others to trigger failover to the poisoned infrastructure.   The post $290 Million Kelp DAO Crypto Heist Blamed on North Korea appeared first on SecurityWeek. This article is an excerpt

$290 Million Kelp DAO Crypto Heist Blamed on North Korea Read More »

Two North Korean IT Worker Scheme Facilitators Jailed in the US

cybercrime, fake IT workers, North Korea, sentenced /

Two North Korean IT Worker Scheme Facilitators Jailed in the US 2026-04-17 at 14:32 By Ionut Arghire Kejia Wang and Zhenxing Wang compromised the identities of dozens of US persons to help land jobs at over 100 companies. The post Two North Korean IT Worker Scheme Facilitators Jailed in the US appeared first on SecurityWeek.

Two North Korean IT Worker Scheme Facilitators Jailed in the US Read More »

Two US nationals jailed over scheme that generated $5 million for the North Korean regime

law enforcement, News, North Korea, remote working, USA /

Two US nationals jailed over scheme that generated $5 million for the North Korean regime 2026-04-16 at 13:07 By Sinisa Markovic Two US nationals have been sentenced for their role in a scheme that placed North Korean IT workers inside American companies under false identities. Over several years, the operation used stolen identities from at

Two US nationals jailed over scheme that generated $5 million for the North Korean regime Read More »

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack

Artificial Intelligence, Axios, certificate, North Korea, OpenAI, supply chain attack, Supply Chain Security /

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack 2026-04-13 at 15:44 By Eduard Kovacs The AI giant is taking action after determining that a macOS code signing certificate may have been compromised. The post OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack Read More »

North Korean Hackers Target High-Profile Node.js Maintainers

Node.js, North Korea, supply chain attack, Supply Chain Security /

North Korean Hackers Target High-Profile Node.js Maintainers 2026-04-06 at 14:12 By Ionut Arghire The threat actor behind the Axios supply chain attack has been aiming at other maintainers in its social engineering campaign. The post North Korean Hackers Target High-Profile Node.js Maintainers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

North Korean Hackers Target High-Profile Node.js Maintainers Read More »

North Korean Hackers Drain $285 Million From Drift in 10 Seconds

Cryptocurrency, cryptocurrency heist, cybercrime, drift, Featured, North Korea /

North Korean Hackers Drain $285 Million From Drift in 10 Seconds 2026-04-03 at 14:30 By Ionut Arghire The attackers prepared infrastructure and multiple nonce-based transactions, took over an admin key, and drained five vaults. The post North Korean Hackers Drain $285 Million From Drift in 10 Seconds appeared first on SecurityWeek. This article is an

North Korean Hackers Drain $285 Million From Drift in 10 Seconds Read More »

North Korean hackers linked to Axios npm supply chain compromise

Arctic Wolf Networks, backdoor, cybercrime, Don't miss, Google Cloud, Hot stuff, Mandiant, News, North Korea, supply chain attacks, supply chain compromise /

North Korean hackers linked to Axios npm supply chain compromise 2026-04-01 at 18:56 By Zeljka Zorz The software supply chain attack that resulted in the compromise of npm packages of Axios, an extremely popular HTTP client library, is believed to be the work of financially-motivated North Korean attackers. Links to UNC1069 On March 31, 2026,

North Korean hackers linked to Axios npm supply chain compromise Read More »

Axios NPM Package Breached in North Korean Supply Chain Attack

Application Security, Axios, Featured, North Korea, NPM, supply chain attack, Supply Chain Security /

Axios NPM Package Breached in North Korean Supply Chain Attack 2026-04-01 at 11:46 By Ionut Arghire A long-lived NPM access token was used to bypass the GitHub Actions OIDC-based CI/CD publishing workflow and push backdoored package versions. The post Axios NPM Package Breached in North Korean Supply Chain Attack appeared first on SecurityWeek. This article

Axios NPM Package Breached in North Korean Supply Chain Attack Read More »

Elite members of North Korean society fake their way into Western paychecks

cyber espionage, cybercrime, Flare, IBM X-Force, News, North Korea, remote working /

Elite members of North Korean society fake their way into Western paychecks 2026-03-19 at 09:02 By Sinisa Markovic Increased federal activity, including indictments over the past year, has drawn attention to a pattern that has been unfolding inside corporate hiring pipelines. North Korean nationals are securing roles as remote IT contractors and full-time staff within

Elite members of North Korean society fake their way into Western paychecks Read More »

Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea

cybercrime, infostealer, Malware, Malware & Threats, North Korea, Polyfill /

Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea 2026-03-12 at 11:48 By Eduard Kovacs The 2024 incident was initially linked to China, but an infostealer infection has now revealed North Korean involvement. The post Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea appeared first on SecurityWeek. This article is

Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea Read More »

North Korean APT Targets Air-Gapped Systems in Recent Campaign

air gap, APT37, Malware & Threats, North Korea /

North Korean APT Targets Air-Gapped Systems in Recent Campaign 2026-03-02 at 13:47 By Ionut Arghire Using Windows shortcut files, the APT deployed a new implant, a loader, a propagation tool, and two backdoors. The post North Korean APT Targets Air-Gapped Systems in Recent Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

North Korean APT Targets Air-Gapped Systems in Recent Campaign Read More »

Ukrainian Gets 5 Years in US Prison for Aiding North Korean IT Fraud

cybercrime, fake IT workers, laptop farm, North Korea, sentenced, Ukraine /

Ukrainian Gets 5 Years in US Prison for Aiding North Korean IT Fraud 2026-02-23 at 15:38 By Ionut Arghire Oleksandr Didenko sold the stolen identities of US citizens, allowing North Koreans to get hired using freelance work platforms. The post Ukrainian Gets 5 Years in US Prison for Aiding North Korean IT Fraud appeared first

Ukrainian Gets 5 Years in US Prison for Aiding North Korean IT Fraud Read More »

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

macOS malware, Malware, Malware & Threats, North Korea, VS Code /

North Korean Hackers Target macOS Developers via Malicious VS Code Projects 2026-01-21 at 15:23 By Ionut Arghire The hackers trick victims into accessing GitHub or GitLab repositories that are opened using Visual Studio Code. The post North Korean Hackers Target macOS Developers via Malicious VS Code Projects appeared first on SecurityWeek. This article is an

North Korean Hackers Target macOS Developers via Malicious VS Code Projects Read More »

Scroll to Top