North Korea

Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine

Andariel, APT45, Lazarus, Malware & Threats, Mandiant, Nation-State, North Korea, Ransomware /

Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine 2024-07-25 at 14:16 By Ryan Naraine A fresh Mandiant report documents North Korea’s APT45 as a distinct hacking team conducting cyberespionage and ransomware operations. The post Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine appeared first on SecurityWeek. This article is […]

Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine Read More »

KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware 

Artificial Intelligence, deepfakes, Endpoint Security, KnowBe4, Lazarus, Nation-State, North Korea /

KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware  2024-07-24 at 05:16 By Ryan Naraine KnowBe4 chief executive Stu Sjouwerman: “We sent them their Mac workstation, and the moment it was received, it immediately started to load malware.” The post KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware 

KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware  Read More »

Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets

Cryptocurrency, cybercrime, North Korea /

Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets 2024-06-25 at 16:01 By Ionut Arghire CoinStats says North Korean hackers drained $2 million in virtual assets from 1,590 cryptocurrency wallets. The post Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets Read More »

Moonstone Sleet: A new North Korean threat actor

cyber espionage, data theft, Don't miss, Hot stuff, Microsoft, News, North Korea, Ransomware /

Moonstone Sleet: A new North Korean threat actor 2024-05-29 at 15:46 By Zeljka Zorz Microsoft has named yet another state-aligned threat actor: Moonstone Sleet (formerly Storm-1789), which engages in cyberespionage and ransomware attacks to further goals of the North Korean regime. “Moonstone Sleet uses tactics, techniques, and procedures (TTPs) also used by other North Korean

Moonstone Sleet: A new North Korean threat actor Read More »

New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks

Nation-State, North Korea /

New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks 2024-05-29 at 15:16 By Ionut Arghire Microsoft dives into the tactics, techniques, and procedures of North Korean threat actor Moonstone Sleet. The post New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks appeared first on SecurityWeek. This article is an excerpt from

New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks Read More »

US exposes scheme enabling North Korean IT workers to bypass sanctions

DOJ, Don't miss, enterprise, Hot stuff, News, North Korea, tips, USA /

US exposes scheme enabling North Korean IT workers to bypass sanctions 2024-05-17 at 14:46 By Zeljka Zorz The US Justice Department had unsealed charges against a US woman and an Ukranian man who, along with three unidentified foreign nationals, have allegedly helped North Korean IT workers work remotely for US companies under assumed US identities

US exposes scheme enabling North Korean IT workers to bypass sanctions Read More »

Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms

arrested, charged, North Korea, Tracking & Law Enforcement /

Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms 2024-05-17 at 13:01 By Eduard Kovacs The US government has announced charges, seizures, arrests and rewards as part of an effort to disrupt a scheme that generates revenue for North Korea. The post Woman Accused of Helping North Korean IT Workers Infiltrate

Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms Read More »

North Korea used Tornado Cash to siphon HTX’s $147.5M loot: UN

Alexey Pertsev, crypto mixing services, cryptocurrency laundering, cryptocurrency thefts, cyberattacks, lazarus group, money laundering, North Korea, privacy protocol, Tornado Cash, UN report /

North Korea used Tornado Cash to siphon HTX’s $147.5M loot: UN 2024-05-15 at 16:01 By Cointelegraph by Arijit Sarkar A UN report reveals North Korean hackers laundered $150 million in stolen crypto assets through Tornado Cash in March 2024. This article is an excerpt from Cointelegraph.com News View Original Source

North Korea used Tornado Cash to siphon HTX’s $147.5M loot: UN Read More »

US Says North Korean Hackers Exploiting Weak DMARC Settings 

APT, DMARC, email security, Featured, Kimsuky, Malware & Threats, Nation-State, North Korea /

US Says North Korean Hackers Exploiting Weak DMARC Settings  2024-05-03 at 19:16 By Ionut Arghire The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks. The post US Says North Korean Hackers Exploiting Weak DMARC Settings  appeared first on SecurityWeek. This article is an excerpt from

US Says North Korean Hackers Exploiting Weak DMARC Settings  Read More »

North Korean Lazarus Group laundered over $200M in hacked crypto since 2020

hackers, Hacks, North Korea /

North Korean Lazarus Group laundered over $200M in hacked crypto since 2020 2024-04-29 at 18:01 By Cointelegraph by Zoltan Vardai The notorious group of hackers used a combination of crypto mixers and peer-to-peer marketplaces to launder the stolen funds. This article is an excerpt from Cointelegraph.com News View Original Source

North Korean Lazarus Group laundered over $200M in hacked crypto since 2020 Read More »

North Korean Hackers Hijack Antivirus Updates for Malware Delivery

Malware, Malware & Threats, North Korea /

North Korean Hackers Hijack Antivirus Updates for Malware Delivery 2024-04-24 at 18:17 By Ionut Arghire A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners. The post North Korean Hackers Hijack Antivirus Updates for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

North Korean Hackers Hijack Antivirus Updates for Malware Delivery Read More »

North Korean Lazarus hacker group using LinkedIn to target and steal assets: Report

hackers, North Korea /

North Korean Lazarus hacker group using LinkedIn to target and steal assets: Report 2024-04-24 at 14:01 By Cointelegraph by Prashant Jha Lazarus group first surfaced in 2009, and since then, it has primarily targeted crypto firms, stealing billions of dollars worth of assets. This article is an excerpt from Cointelegraph.com News View Original Source

North Korean Lazarus hacker group using LinkedIn to target and steal assets: Report Read More »

Former Ethereum dev Virgil Griffith asks for resentencing in North Korea case

court, lawyers, North Korea, Sanctions, sentence, Virgil Griffith /

Former Ethereum dev Virgil Griffith asks for resentencing in North Korea case 2024-04-18 at 07:02 By Cointelegraph by Martin Young Griffith’s attorneys are asking for a sentence reduction from 63 months to 51 months or less. This article is an excerpt from Cointelegraph.com News View Original Source

Former Ethereum dev Virgil Griffith asks for resentencing in North Korea case Read More »

Railgun denies being used by North Korea as it nears $1B total volume

crypto mixer, North Korea, Privacy, Railgun /

Railgun denies being used by North Korea as it nears $1B total volume 2024-04-17 at 05:01 By Cointelegraph by Felix Ng Privacy protocol Railgun, which security analysts have labeled a “prime alternative” to Tornado Cash, denied U.S.-sanctioned entities are using it. This article is an excerpt from Cointelegraph.com News View Original Source

Railgun denies being used by North Korea as it nears $1B total volume Read More »

Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack

CVE-2024-21338, exploited, Featured, Lazarus, Malware & Threats, North Korea, Vulnerabilities, Windows, Zero-Day /

Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack 2024-02-29 at 13:46 By Eduard Kovacs North Korean group Lazarus exploited AppLocker driver zero-day CVE-2024-21338 for privilege escalation in attacks involving FudModule rootkit. The post Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack appeared first on SecurityWeek. This article is an excerpt from

Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack Read More »

South Korea Says Presumed North Korean Hackers Breached Personal Emails of Presidential Staffer

Cyberwarfare, North Korea, South Korea /

South Korea Says Presumed North Korean Hackers Breached Personal Emails of Presidential Staffer 2024-02-14 at 18:46 By Associated Press South Korean President Yoon Suk Yeol’s office said presumed North Korean hackers breached the personal emails of one of his staff members. The post South Korea Says Presumed North Korean Hackers Breached Personal Emails of Presidential

South Korea Says Presumed North Korean Hackers Breached Personal Emails of Presidential Staffer Read More »

New ‘SpectralBlur’ macOS Backdoor Linked to North Korea

Mac malware, Malware & Threats, North Korea /

New ‘SpectralBlur’ macOS Backdoor Linked to North Korea 2024-01-05 at 15:45 By Ionut Arghire SpectralBlur is a new macOS backdoor that shows similarities with North Korean hacking group’s KandyKorn malware. The post New ‘SpectralBlur’ macOS Backdoor Linked to North Korea appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

New ‘SpectralBlur’ macOS Backdoor Linked to North Korea Read More »

Lazarus exploit Log4Shell vulnerability to deliver novel RAT malware

Cisco, Don't miss, exploit, Hot stuff, Log4j, Malware, News, North Korea, vulnerability /

Lazarus exploit Log4Shell vulnerability to deliver novel RAT malware 12/12/2023 at 17:50 By Helga Labus North Korea-backed group Lazarus has been spotted exploiting the Log4Shell vulnerability (CVE-2021-44228) and novel malware written in DLang (i.e., the memory-safe D programming language). “This campaign consists of continued opportunistic targeting of enterprises globally that publicly host and expose their

Lazarus exploit Log4Shell vulnerability to deliver novel RAT malware Read More »

North Korean Hackers Developing Malware in Dlang Programming Language

Lazarus, Malware, Malware & Threats, North Korea /

North Korean Hackers Developing Malware in Dlang Programming Language 11/12/2023 at 18:16 By Ionut Arghire North Korean hackers have used Dlang-based malware in attacks against manufacturing, agriculture, and physical security organizations. The post North Korean Hackers Developing Malware in Dlang Programming Language appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

North Korean Hackers Developing Malware in Dlang Programming Language Read More »

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report

Cryptocurrency, cybercrime, Data Breaches, Kimsuky, Lazarus, Nation-State, North Korea, Threat Intelligence /

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report 04/12/2023 at 18:16 By Ionut Arghire Recorded Future calculates that North Korean state-sponsored threat actors are believed to have stolen more than $3 billion in cryptocurrency. The post North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report appeared first on SecurityWeek. This

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report Read More »

Scroll to Top