Tag: korea
-
New Android SpyAgent Malware Uses OCR to Steal Crypto Wallet Recovery Keys
Android device users in South Korea have emerged as a target of a new mobile malware campaign that delivers a new type of threat dubbed SpyAgent.The m… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/new-android-spyagent-malware-uses-ocr.html
-
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
Threat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operat… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-threat-actors-deploy.html
-
Windows 0-day was exploited by North Korea to install advanced rootkit
First seen on arstechnica.com Jump to article: arstechnica.com/
-
North Korea’s ‘Citrine Sleet’ APT Exploits Zero-Day Chromium Bug
Microsoft warned that the DPRK’s latest innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/north-korean-apt-exploits-novel-chromium-windows-bugs-steal-crypto
-
North Korea Uses Fraudulent Job Lures to Launch Attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/north-korea-uses-fraudulent-job-lures-to-launch-attacks
-
North Korea Targeting Crypto Industry, Says FBI
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korea-targeting-crypto/
-
FBI: North Korea Aggressively Hacking Cryptocurrency Firms
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36293/FBI-North-Korea-Aggressively-Hacking-Cryptocurrency-Firms.html
-
North Korean Hackers Target Developers with Malicious npm Packages
Threat actors with ties to North Korea have been observed publishing a set of malicious packages to the npm registry, indicating coordinated and relen… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/north-korean-hackers-target-developers.html
-
APT60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
A South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WP… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/apt-c-60-group-exploit-wps-office-flaw.html
-
South Korea Police Investigates Telegram Over Deepfake Porn
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/south-korea-police-telegram/
-
US ‘laptop farm’ man accused of outsourcing his IT jobs to North Korea to fund weapons programs
First seen on theregister.com Jump to article: www.theregister.com/2024/08/08/north_korea_laptop_farm_arrest/
-
North Korean Hackers Tied to Exploits of Chromium Zero-Day
Cryptocurrency Users Targeted in Latest Campaign Involving FudModule Rootkit. A hacking group tied to North Korea exploited a zero-day vulnerability i… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korean-hackers-tied-to-exploits-chromium-zero-day-a-26181
-
North Korea-linked APT Citrine Sleet exploit Chrome zero-day to deliver FudModule rootkit
North Korea-linked APT exploited the recently patched Google Chrome zero-day CVE-2024-7971 to deploy the FudModule rootkit. North Korea-linked group C… First seen on securityaffairs.com Jump to article: securityaffairs.com/167848/breaking-news/north-korea-linked-apt-exploited-chrome-zero-day-cve-2024-7971.html
-
South Korea-linked group APT-C-60 exploited a WPS Office zero-day
South Korea-linked group APT-C-60 exploited a zero-day in the Windows version of WPS Office to target East Asian countries. South Korea-linked group A… First seen on securityaffairs.com Jump to article: securityaffairs.com/167825/hacking/apt-c-60-wps-office-zero-day.html
-
South Korean hackers exploited WPS Office zero-day to deploy malware
The South Korea-aligned cyberespionage group APT-C-60 has been leveraging a zero-day code execution vulnerability in the Windows version of WPS Office… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apt-c-60-hackers-exploited-wps-office-zero-day-to-deploy-spyglace-malware/
-
Argentina Busts Crypto Ring Linked to North Korea, Seizes Millions
In Argentina, the police have uncovered an illegal financial organization engaged in the exchange of fiat and cryptocurrencies, which may be connected… First seen on securityonline.info Jump to article: securityonline.info/argentina-busts-crypto-ring-linked-to-north-korea-seizes-millions/
-
APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262)
ESET researchers discovered a remote code execution vulnerability in WPS Office for Windows (CVE-2024-7262). APT-C-60, a South Korea-aligned cyberespi… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/28/cve-2024-7262-cve-2024-7263/
-
WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies
A WPS Office zero-day vulnerability tracked as CVEâ -â 2024â -â 7262 was exploited by South Korean hacker group APT-C-60. The post WPS Office Zero… First seen on securityweek.com Jump to article: www.securityweek.com/wps-office-zero-day-exploited-by-south-korea-linked-cyberspies/
-
Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group
A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with Nort… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/microsoft-patches-zero-day-flaw.html
-
Russian national arrested in Argentina for laundering money of crooks and Lazarus APT
A Russian national was arrested in Argentina for laundering proceeds from illicit actors, including North Korea-linked Lazarus Group. This week, the A… First seen on securityaffairs.com Jump to article: securityaffairs.com/167485/cyber-crime/russian-national-arrested-laundering-lazarus-funds.html
-
Defenders get a MoonPeak at North Korea’s malware backbone
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/defenders-get-a-moonpeak-at-north-koreas-malware-backbone
-
North Korea-linked APT used a new RAT called MoonPeak
North Korea-linked APT Kimsuky is likely behind a new remote access trojan called MoonPeak used in a recent campaign spotted by Cisco Talos. Cisco Tal… First seen on securityaffairs.com Jump to article: securityaffairs.com/167340/malware/north-korea-apt-moonpeaknorth.html
-
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT
Microsoft addressed a zero-day vulnerability actively exploited by the North-Korea-linked Lazarus APT group. Microsoft has addressed a zero-day vulner… First seen on securityaffairs.com Jump to article: securityaffairs.com/167246/apt/microsoft-zero-day-cve-2024-38193-lazarus.html
-
North Korea Exploited Windows Zero-Day to Deploy Fudmodule
Lazarus Espionage Group’s Sophisticated Malware Evades Antivirus Monitoring. North Korea’s Lazarus hacking team, which focuses on cryptocurrency theft… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-exploited-windows-zero-day-to-deploy-fudmodule-a-26076
-
Windows Zero-Day Attack Linked to North Korea’s Lazarus APT
The vulnerability, tracked as CVE-2024-38193 and marked as ‘actively exploited’ by Microsoft, allows SYSTEM privileges on the latest Windows operating… First seen on securityweek.com Jump to article: www.securityweek.com/windows-zero-day-attack-linked-to-north-koreas-lazarus-apt/
-
University Professors Targeted by North Korean Cyber Espionage Group
The North Korea-linked threat actor known as Kimsuky has been linked to a new set of attacks targeting university staff, researchers, and professors f… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/university-professors-targeted-by-north.html