Tag: north-korea
-
Private US companies targeted by Stonefly APT
Undeterred by the indictment issued against one of its alleged members, North Korean APT group Stonefly (aka APT45) continues to target companies in t… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/03/private-us-companies-targeted-by-stonefly-apt/
-
North Korean’s Stonefly shifts from espionage to ransomware, extortion
First seen on scworld.com Jump to article: www.scworld.com/news/north-koreans-stonefly-shifts-from-espionage-to-ransomware-extortion
-
North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence
North Korea-linked APT Kimsuky has been linked to a cyberattack on Diehl Defence, a German manufacturer of advanced military systems. North Korea-link… First seen on securityaffairs.com Jump to article: securityaffairs.com/169162/apt/kimsuky-apt-hit-diehl-defence.html
-
Warnings Mount Over Fake North Korean IT Workers
German Domestic Intelligence Agency Says German Companies Have Fallen For Scam. The German federal domestic intelligence agency is adding to warnings … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/warnings-mount-over-fake-north-korean-workers-a-26430
-
Sanctioned North Korean unit tried to hack at least 3 US organizations this summer
Tags: north-koreaFirst seen on therecord.media Jump to article: therecord.media/north-korea-hackers-andariel-stonefly-ransomware
-
North Korea-backed cyber espionage campaign targets UK military
National Cyber Security Centre warns of global hacking effort to obtain nuclear and defence intelligence</p><p>North Korean state-backed h… First seen on theguardian.com Jump to article: www.theguardian.com/world/article/2024/jul/25/north-korea-backed-cyber-espionage-campaign-targets-uk-military
-
THN Cybersecurity Recap: Last Week’s Top Threats and Trends (September 16-22)
Hold on tight, folks, because last week’s cybersecurity landscape was a rollercoaster! We witnessed everything from North Korean hackers dangling drea… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/thn-cybersecurity-recap-last-weeks-top.html
-
North Korea Hackers Linked to Breach of German Missile Manufacturer
The targeting of Diehl Defence is significant because the company specializes in the production of missiles and ammunition. The post North Korea Hacke… First seen on securityweek.com Jump to article: www.securityweek.com/north-korea-hackers-linked-to-breach-of-german-missile-manufacturer/
-
New PondRAT Malware Hidden in Python Packages Targets Software Developers
Threat actors with ties to North Korea have been observed using poisoned Python packages as a way to deliver a new malware called PondRAT as part of a… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/new-pondrat-malware-hidden-in-python.html
-
North Korean Hackers Gleaming Pisces Poisoned Python Packages Target Linux macOS
Unit 42 researchers have uncovered a new cyberattack campaign by the North Korean-affiliated APT group, Gleaming Pisces, targeting Linux and macOS sys… First seen on securityonline.info Jump to article: securityonline.info/north-korean-hackers-gleaming-pisces-poisoned-python-packages-target-linux-macos/
-
Major companies keep hiring North Korean IT workers
First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/north-korea-it-workers-insider-threat/727892/
-
North Korean Hackers Target Cryptocurrency Developers with Thiefbucket Malware
Jamf Threat Labs has uncovered a series of targeted attacks against individuals in the cryptocurrency industry, aligning with recent FBI warnings abou… First seen on securityonline.info Jump to article: securityonline.info/north-korean-hackers-target-cryptocurrency-developers-with-thiefbucket-malware/
-
North Korean APT Bypasses DMARC Email Policies in Cyber-Espionage Attacks
First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/north-korean-apt-bypasses-dmarc-email-cyber-espionage-attacks
-
Four lessons learned from our experience with a fake North Korean remote IT worker
First seen on scworld.com Jump to article: www.scworld.com/perspective/four-lessons-learned-from-our-experience-with-a-fake-north-korean-remote-it-worker
-
Inadvertent North Korean IT worker hiring prevalent among Fortune 100 firms
First seen on scworld.com Jump to article: www.scworld.com/brief/inadvertent-north-korean-it-worker-hiring-prevalent-among-fortune-100-firms
-
Breach Roundup: How to Spot North Korean IT Workers
Also: Ransomware Surged in 2023, MoneyGram Back in Service After Cyberattack. This week, advice on spotting North Korean staff; ransomware attacks ros… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-how-to-spot-north-korean-workers-a-26392
-
Google Warns Of North Korean IT Workers Have Infiltrated The U.S. Workforce
Tags: north-koreaNorth Korean IT workers, disguised as non-North Koreans, infiltrate various industries to generate revenue for their regime, evading sanctions and fun… First seen on gbhackers.com Jump to article: gbhackers.com/north-korean-it-infiltration-u-s/
-
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospac… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html
-
Security Firm’s North Korean Hacker Hire Not an Isolated Incident
What happened to KnowBe4 also has happened to many other organizations, and it’s still a risk for companies of all sizes due to a sophisticated networ… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/security-hire-north-korean-hacker-not-isolated-incident
-
Malicious Python packages help North Korean APT deliver PondRAT malware
First seen on scworld.com Jump to article: www.scworld.com/brief/malicious-python-packages-help-north-korean-apt-deliver-pondrat-malware
-
North Korea-linked APT Gleaming Pisces deliver new PondRAT backdoor via malicious Python packages
North Korea-linked APT group Gleaming Pisces is distributing a new malware called PondRAT through tainted Python packages. Unit 42 researchers uncover… First seen on securityaffairs.com Jump to article: securityaffairs.com/168781/apt/gleaming-pisces-malicious-python-packages.html
-
North Korean scammers plan wave of stealth attacks on crypto companies, FBI warns
First seen on theregister.com Jump to article: www.theregister.com/2024/09/05/fbi_north_korean_scammers_prepping/
-
North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware
Cybersecurity researchers are continuing to warn about North Korean threat actors’ attempts to target prospective victims on LinkedIn to deliver malwa… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target.html
-
Major companies keeping hiring North Korean IT workers
First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/north-korea-it-workers-insider-threat/727892/
-
Mandiant Offers Clues to Spotting and Stopping North Korean Fake IT Workers
Mandiant shines the spotlight on the growing infiltration of US and Western companies by North Korean fake IT workers. The post Mandiant Offers Clues … First seen on securityweek.com Jump to article: www.securityweek.com/mandiant-offers-clues-to-spotting-and-stopping-north-korean-fake-it-workers/
-
Dozens of Fortune 100 companies have unwittingly hired North Korean IT workers, according to report
Tags: north-koreaFirst seen on therecord.media Jump to article: therecord.media/major-us-companies-unwittingly-hire-north-korean-remote-it-workers
-
North Korea Targets Software Supply Chain Via PyPI
Backdoored Python Packages Likely Work of ‘Gleaming Pisces,’ Says Palo Alto. A North Korean hacking group with a history of a stealing cryptocurrency … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-targets-software-supply-chain-via-pypi-a-26344
-
UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure
Mandiant has unveiled a new wave of cyber-espionage attacks orchestrated by the North Korea-linked group UNC2970. This group has recently employed a s… First seen on securityonline.info Jump to article: securityonline.info/unc2970s-backdoor-deployed-via-trojanized-pdf-reader-targets-critical-infrastructure/
-
Novel Backdoor Leveraged in North Korean Hackers’ Global Aerospace, Energy Attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/novel-backdoor-leveraged-in-north-korean-hackers-global-aerospace-energy-attacks