Tag: korea
-
Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine War
South Korea warned that pro-Russian groups have attacked government and private sector websites following the deployment of North Korean soldiers in Ukraine First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/russian-hacktivits-south-korea/
-
North Korea allegedly targeting crypto businesses with Mac-focused malware
First seen on therecord.media Jump to article: therecord.media/north-korea-bluenoroff-mac-malware-crypto-industry
-
North Korea’s Andariel Pivots to ‘Play’ Ransomware Games
The prominent state-sponsored advanced persistent threat (APT), aka Jumpy Pisces, appears to be moving away from its primary cyber-espionage motives a… First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/north-korea-andariel-play-ransomware
-
DPRK-linked BlueNoroff used macOS malware with novel persistence
SentinelLabs observed North Korea-linked threat actor BlueNoroff targeting businesses in the crypto industry with a new multi-stage malware. SentinelLabs researchers identified a North Korea-linked threat actor targeting crypto businesses with new macOS malware as part of a campaign tracked as >>Hidden Risk.
-
South Korea Fines Meta $15 Million for Illegally Collecting Information on Facebook Users
South Korea’s privacy watchdog has fined Meta 21.6 billion won ($15 million) for illegally collecting sensitive personal information from Facebook use… First seen on securityweek.com Jump to article: www.securityweek.com/south-korea-fines-meta-15-million-for-illegally-collecting-information-on-facebook-users/
-
Contagious Interview WageMole: North Korea’s New Cyber Espionage Campaigns
In a recent report, Zscaler ThreatLabz uncovers the creative yet deceptive strategies used by North Korean threat actors to infiltrate Western job markets. Through two interconnected campaigns”, Contagious Interview and WageMole”, these... First seen on securityonline.info Jump to article: securityonline.info/contagious-interview-wagemole-north-koreas-new-cyber-espionage-campaigns/
-
Officials warn of Russia’s techtroops deal with North Korea amid Ukraine conflict
10,000 of Kim Jong Un’s soldiers believed to be headed for front line First seen on theregister.com Jump to article: www.theregister.com/2024/11/07/russia_tech_transfer_north_korea/
-
Sophisticated Phishing Campaign Linked to North Korea Targets Apple and Naver Users
In a recent report, Hunt researchers uncovered a sophisticated phishing campaign suspected to be linked to North Korean threat actors, primarily targe… First seen on securityonline.info Jump to article: securityonline.info/sophisticated-phishing-campaign-linked-to-north-korea-targets-apple-and-naver-users/
-
UNC5267: Exposing North Korea’s State-Sponsored IT Worker Infiltration
In a recent report, Mandiant has uncovered the ongoing and sophisticated operations of a North Korean-aligned cyber group designated as UNC5267. This … First seen on securityonline.info Jump to article: securityonline.info/unc5267-exposing-north-koreas-state-sponsored-it-worker-infiltration/
-
Feds reach for sliver of crypto-cash nicked by North Korea’s notorious Lazarus Group
First seen on theregister.com Jump to article: www.theregister.com/2024/10/08/us_lazarus_group_crypto_seizure/
-
North Korea Hackers Get Cash Fast in Linux Cyber Heists
First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/north-korea-hackers-cash-linux-cyber-heists
-
North Korea Escalates Fake IT Worker Schemes to Extort Employers
Secureworks said it had observed a case where a fake North Korean IT contractor exfiltrated proprietary data before issuing a ransom demand to their f… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korea-it-worker-extort/
-
North Korea-linked APT37 exploited IE zero-day in a recent attack
Tags: attack, exploit, group, Internet, korea, north-korea, supply-chain, threat, vulnerability, zero-dayNorth Korea-linked group APT37 exploited an Internet Explorer zero-day vulnerability in a supply chain attack. A North Korea-linked threat actor, trac… First seen on securityaffairs.com Jump to article: securityaffairs.com/169983/apt/north-korea-apt37-ie-zero-day.html
-
N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware
Threat actors with ties to North Korea have been observed targeting job seekers in the tech industry to deliver updated versions of known malware fami… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/n-korean-hackers-use-fake-interviews-to.html
-
A new Linux variant of FASTCash malware targets financial systems
North Korea-linked actors deploy a new Linux variant of FASTCash malware to target financial systems, researcher HaxRob revealed. The cybersecurity re… First seen on securityaffairs.com Jump to article: securityaffairs.com/169860/malware/new-linux-variant-fastcash-malware-targets-financial-systems.html
-
The latest in North Korea’s fake IT worker scheme: Extorting the employers
First seen on therecord.media Jump to article: therecord.media/north-korean-fake-it-workers-extorting-employers
-
North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
Threat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShel… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/north-korean-hackers-using-new.html
-
North Korea’s ‘Stonefly’ APT Swarms US Private Co’s. for Profit
Despite a $10 million bounty on one member, APT45 is not slowing down, pivoting from intelligence gathering to extorting funds for Kim Jong-Un’s regim… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/stonefly-apt-us-private-cos-north-korean-profit
-
CIA Seeks Informants In North Korea, Iran, And China
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36427/CIA-Seeks-Informants-In-North-Korea-Iran-And-China.html
-
N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks
Threat actors with ties to North Korea have been observed leveraging two new malware strains dubbed KLogEXE and FPSpy.The activity has been attributed… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/n-korean-hackers-deploy-new-klogexe-and.html
-
North Korea ‘Shrouded Sleep’ malware campaign targeting Cambodia, other Southeast Asian nations
First seen on therecord.media Jump to article: therecord.media/north-korea-malware-espionage-cambodia
-
North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence
North Korea-linked APT Kimsuky has been linked to a cyberattack on Diehl Defence, a German manufacturer of advanced military systems. North Korea-link… First seen on securityaffairs.com Jump to article: securityaffairs.com/169162/apt/kimsuky-apt-hit-diehl-defence.html
-
North Korea-backed cyber espionage campaign targets UK military
National Cyber Security Centre warns of global hacking effort to obtain nuclear and defence intelligence</p><p>North Korean state-backed h… First seen on theguardian.com Jump to article: www.theguardian.com/world/article/2024/jul/25/north-korea-backed-cyber-espionage-campaign-targets-uk-military
-
North Korea Hackers Linked to Breach of German Missile Manufacturer
The targeting of Diehl Defence is significant because the company specializes in the production of missiles and ammunition. The post North Korea Hacke… First seen on securityweek.com Jump to article: www.securityweek.com/north-korea-hackers-linked-to-breach-of-german-missile-manufacturer/
-
New PondRAT Malware Hidden in Python Packages Targets Software Developers
Threat actors with ties to North Korea have been observed using poisoned Python packages as a way to deliver a new malware called PondRAT as part of a… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/new-pondrat-malware-hidden-in-python.html
-
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospac… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html
-
North Korea-linked APT Gleaming Pisces deliver new PondRAT backdoor via malicious Python packages
North Korea-linked APT group Gleaming Pisces is distributing a new malware called PondRAT through tainted Python packages. Unit 42 researchers uncover… First seen on securityaffairs.com Jump to article: securityaffairs.com/168781/apt/gleaming-pisces-malicious-python-packages.html
-
Telegram apologizes to South Korea and takes down smutty deepfakes
First seen on theregister.com Jump to article: www.theregister.com/2024/09/04/telegram_south_korea_deepfake_apology/
-
North Korea Targets Software Supply Chain Via PyPI
Backdoored Python Packages Likely Work of ‘Gleaming Pisces,’ Says Palo Alto. A North Korean hacking group with a history of a stealing cryptocurrency … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-targets-software-supply-chain-via-pypi-a-26344
-
UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure
Mandiant has unveiled a new wave of cyber-espionage attacks orchestrated by the North Korea-linked group UNC2970. This group has recently employed a s… First seen on securityonline.info Jump to article: securityonline.info/unc2970s-backdoor-deployed-via-trojanized-pdf-reader-targets-critical-infrastructure/