Tag: north-korea
-
Google Warns Of North Korean IT Workers Have Infiltrated The U.S. Workforce
Tags: north-koreaNorth Korean IT workers, disguised as non-North Koreans, infiltrate various industries to generate revenue for their regime, evading sanctions and fun… First seen on gbhackers.com Jump to article: gbhackers.com/north-korean-it-infiltration-u-s/
-
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospac… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html
-
Security Firm’s North Korean Hacker Hire Not an Isolated Incident
What happened to KnowBe4 also has happened to many other organizations, and it’s still a risk for companies of all sizes due to a sophisticated networ… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/security-hire-north-korean-hacker-not-isolated-incident
-
Malicious Python packages help North Korean APT deliver PondRAT malware
First seen on scworld.com Jump to article: www.scworld.com/brief/malicious-python-packages-help-north-korean-apt-deliver-pondrat-malware
-
North Korea-linked APT Gleaming Pisces deliver new PondRAT backdoor via malicious Python packages
North Korea-linked APT group Gleaming Pisces is distributing a new malware called PondRAT through tainted Python packages. Unit 42 researchers uncover… First seen on securityaffairs.com Jump to article: securityaffairs.com/168781/apt/gleaming-pisces-malicious-python-packages.html
-
North Korean scammers plan wave of stealth attacks on crypto companies, FBI warns
First seen on theregister.com Jump to article: www.theregister.com/2024/09/05/fbi_north_korean_scammers_prepping/
-
North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware
Cybersecurity researchers are continuing to warn about North Korean threat actors’ attempts to target prospective victims on LinkedIn to deliver malwa… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target.html
-
Major companies keeping hiring North Korean IT workers
First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/north-korea-it-workers-insider-threat/727892/
-
Mandiant Offers Clues to Spotting and Stopping North Korean Fake IT Workers
Mandiant shines the spotlight on the growing infiltration of US and Western companies by North Korean fake IT workers. The post Mandiant Offers Clues … First seen on securityweek.com Jump to article: www.securityweek.com/mandiant-offers-clues-to-spotting-and-stopping-north-korean-fake-it-workers/
-
Dozens of Fortune 100 companies have unwittingly hired North Korean IT workers, according to report
Tags: north-koreaFirst seen on therecord.media Jump to article: therecord.media/major-us-companies-unwittingly-hire-north-korean-remote-it-workers
-
North Korea Targets Software Supply Chain Via PyPI
Backdoored Python Packages Likely Work of ‘Gleaming Pisces,’ Says Palo Alto. A North Korean hacking group with a history of a stealing cryptocurrency … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-targets-software-supply-chain-via-pypi-a-26344
-
UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure
Mandiant has unveiled a new wave of cyber-espionage attacks orchestrated by the North Korea-linked group UNC2970. This group has recently employed a s… First seen on securityonline.info Jump to article: securityonline.info/unc2970s-backdoor-deployed-via-trojanized-pdf-reader-targets-critical-infrastructure/
-
Novel Backdoor Leveraged in North Korean Hackers’ Global Aerospace, Energy Attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/novel-backdoor-leveraged-in-north-korean-hackers-global-aerospace-energy-attacks
-
Fake Job Lures Target Employees of Aerospace, Energy Firms
BAE Systems Among Companies in the Sights of North Korean Cyberespionage Group. A North Korean cyberespionage group is posing as job recruiters and ta… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/fake-job-lures-target-employees-aerospace-energy-firms-a-26323
-
UNC2970 Hackers Attacking Job Seekers Using Weaponized PDF Reader
UNC2970, a North Korean cyber espionage group, used customized SumatraPDF trojans to deliver MISTPEN backdoors to victims through phishing emails pret… First seen on gbhackers.com Jump to article: gbhackers.com/unc2970-hackers-job-pdf-attack/
-
North Korean Hackers Lure Critical Infrastructure Employees With Fake Jobs
A North Korean group tracked as UNC2970 has been spotted trying to deliver new malware to people in the aerospace and energy industries. The post Nort… First seen on securityweek.com Jump to article: www.securityweek.com/north-korean-hackers-lure-critical-infrastructure-employees-with-fake-jobs/
-
North Korean hackers exploited Chrome zero-day to steal crypto
First seen on techcrunch.com Jump to article: techcrunch.com/2024/08/30/north-korean-hackers-exploited-chrome-zero-day-to-steal-crypto/
-
North Korean Group Uses Fake Job Offers to Target Energy, Aerospace Sectors
The North Korean-backed threat group UNC2970 is using spearphishing emails and WhatsApp messages to entice high-level executives in the energy and aer… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/north-korean-group-uses-fake-job-offers-to-target-energy-aerospace-sectors/
-
North Korean Hackers Attacking LinkedIn Users to Deliver RustDoor Malware
North Korean hackers have been identified as targeting LinkedIn users to deliver sophisticated malware known as RustDoor. This cyber threat underscore… First seen on gbhackers.com Jump to article: gbhackers.com/north-korean-hackers-attacking-linkedin-users/
-
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
Threat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operat… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-threat-actors-deploy.html
-
Fake Recruiter Coding Tests Target Developers with Malicious Python Packages in Ongoing North Korean Cyber Campaign
A new report from ReversingLabs has uncovered a sophisticated cyber campaign targeting developers, using fake recruiter tactics to deliver malicious P… First seen on securityonline.info Jump to article: securityonline.info/fake-recruiter-coding-tests-target-developers-with-malicious-python-packages-in-ongoing-north-korean-cyber-campaign/
-
Windows 0-day was exploited by North Korea to install advanced rootkit
First seen on arstechnica.com Jump to article: arstechnica.com/
-
Fake password manager coding test used to hack Python developers
Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management p… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fake-password-manager-coding-test-used-to-hack-python-developers/
-
North Korean Hackers Targets Job Seekers with Fake FreeConference App
North Korean threat actors have leveraged a fake Windows video conferencing application impersonating FreeConference.com to backdoor developer systems… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-targets-job.html
-
French Cyber Agency Warns of APT28 Hacks Against Think Tanks
Report: North Korean, Russian, Chinese, Iranian Actors Are Targeting Research Orgs. Russian state hackers are targeting think tanks studying strategic… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/french-cyber-agency-warns-apt28-hacks-against-think-tanks-a-26265
-
North Korean Hackers Target Job Seekers With Fake App
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36303/North-Korean-Hackers-Target-Job-Seekers-With-Fake-App.html
-
North Korea’s ‘Citrine Sleet’ APT Exploits Zero-Day Chromium Bug
Microsoft warned that the DPRK’s latest innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/north-korean-apt-exploits-novel-chromium-windows-bugs-steal-crypto