Tag: north-korea
-
Fake Job Lures Target Employees of Aerospace, Energy Firms
BAE Systems Among Companies in the Sights of North Korean Cyberespionage Group. A North Korean cyberespionage group is posing as job recruiters and ta… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/fake-job-lures-target-employees-aerospace-energy-firms-a-26323
-
UNC2970 Hackers Attacking Job Seekers Using Weaponized PDF Reader
UNC2970, a North Korean cyber espionage group, used customized SumatraPDF trojans to deliver MISTPEN backdoors to victims through phishing emails pret… First seen on gbhackers.com Jump to article: gbhackers.com/unc2970-hackers-job-pdf-attack/
-
North Korean Hackers Lure Critical Infrastructure Employees With Fake Jobs
A North Korean group tracked as UNC2970 has been spotted trying to deliver new malware to people in the aerospace and energy industries. The post Nort… First seen on securityweek.com Jump to article: www.securityweek.com/north-korean-hackers-lure-critical-infrastructure-employees-with-fake-jobs/
-
North Korean hackers exploited Chrome zero-day to steal crypto
First seen on techcrunch.com Jump to article: techcrunch.com/2024/08/30/north-korean-hackers-exploited-chrome-zero-day-to-steal-crypto/
-
North Korean Group Uses Fake Job Offers to Target Energy, Aerospace Sectors
The North Korean-backed threat group UNC2970 is using spearphishing emails and WhatsApp messages to entice high-level executives in the energy and aer… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/north-korean-group-uses-fake-job-offers-to-target-energy-aerospace-sectors/
-
North Korean Hackers Attacking LinkedIn Users to Deliver RustDoor Malware
North Korean hackers have been identified as targeting LinkedIn users to deliver sophisticated malware known as RustDoor. This cyber threat underscore… First seen on gbhackers.com Jump to article: gbhackers.com/north-korean-hackers-attacking-linkedin-users/
-
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
Threat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operat… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-threat-actors-deploy.html
-
Fake Recruiter Coding Tests Target Developers with Malicious Python Packages in Ongoing North Korean Cyber Campaign
A new report from ReversingLabs has uncovered a sophisticated cyber campaign targeting developers, using fake recruiter tactics to deliver malicious P… First seen on securityonline.info Jump to article: securityonline.info/fake-recruiter-coding-tests-target-developers-with-malicious-python-packages-in-ongoing-north-korean-cyber-campaign/
-
Windows 0-day was exploited by North Korea to install advanced rootkit
First seen on arstechnica.com Jump to article: arstechnica.com/
-
Fake password manager coding test used to hack Python developers
Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management p… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fake-password-manager-coding-test-used-to-hack-python-developers/
-
North Korean Hackers Targets Job Seekers with Fake FreeConference App
North Korean threat actors have leveraged a fake Windows video conferencing application impersonating FreeConference.com to backdoor developer systems… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-targets-job.html
-
French Cyber Agency Warns of APT28 Hacks Against Think Tanks
Report: North Korean, Russian, Chinese, Iranian Actors Are Targeting Research Orgs. Russian state hackers are targeting think tanks studying strategic… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/french-cyber-agency-warns-apt28-hacks-against-think-tanks-a-26265
-
North Korean Hackers Target Job Seekers With Fake App
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36303/North-Korean-Hackers-Target-Job-Seekers-With-Fake-App.html
-
North Korea’s ‘Citrine Sleet’ APT Exploits Zero-Day Chromium Bug
Microsoft warned that the DPRK’s latest innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/north-korean-apt-exploits-novel-chromium-windows-bugs-steal-crypto
-
North Korean Hackers Launch Job Interview Scam to Deploy BeaverTail and InvisibleFerret Malware
Lazarus Group, the infamous North Korean hacking collective, has continued its aggressive campaign in 2024, evolving its strategies and expanding its … First seen on securityonline.info Jump to article: securityonline.info/north-korean-hackers-launch-job-interview-scam-to-deploy-beavertail-and-invisibleferret-malware/
-
Fraudulent job lures leveraged in new North Korean hacking attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/fraudulent-job-lures-leveraged-in-new-north-korean-hacking-attacks
-
North Korea Uses Fraudulent Job Lures to Launch Attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/north-korea-uses-fraudulent-job-lures-to-launch-attacks
-
MoonPeak malware from North Korean actors unveils new details on attacker infrastructure
Cisco Talos has uncovered a new remote access trojan (RAT) family we are calling MoonPeak. This a XenoRAT-based malware, which is under active develop… First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/moonpeak-malware-infrastructure-north-korea/
-
North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit
A recently patched security flaw in Google Chrome and other Chromium web browsers was exploited as a zero-day by North Korean actors in a campaign des… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/north-korean-hackers-deploy-fudmodule.html
-
North Korea Targeting Crypto Industry, Says FBI
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korea-targeting-crypto/
-
FBI: North Korea Aggressively Hacking Cryptocurrency Firms
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36293/FBI-North-Korea-Aggressively-Hacking-Cryptocurrency-Firms.html
-
Alert: Hackers Use Bogus npm Packages To Target Developers
North Korean threat actors have recently been observed publishing malicious packages to the npm registry. Reports claim that these acts now indicate u… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/alert-hackers-use-bogus-npm-packages-to-target-developers/
-
North Korean Hackers Target Developers with Malicious npm Packages
Threat actors with ties to North Korea have been observed publishing a set of malicious packages to the npm registry, indicating coordinated and relen… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/north-korean-hackers-target-developers.html
-
Nashville man arrested for running laptop farm to get jobs for North Koreans
First seen on arstechnica.com Jump to article: arstechnica.com/
-
Lazarus Hackers Attacking Job-Seekers to Deliver Javascript Malware
The Lazarus Group is one of the most notorious hacker groups linked to the North Korean government.The group is known for its cyberattacks and has bee… First seen on gbhackers.com Jump to article: gbhackers.com/lazarus-hackers-attacking-job-seekers/