Tag: north-korea
-
Russian national arrested in Argentina for laundering money of crooks and Lazarus APT
A Russian national was arrested in Argentina for laundering proceeds from illicit actors, including North Korea-linked Lazarus Group. This week, the A… First seen on securityaffairs.com Jump to article: securityaffairs.com/167485/cyber-crime/russian-national-arrested-laundering-lazarus-funds.html
-
Defenders get a MoonPeak at North Korea’s malware backbone
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/defenders-get-a-moonpeak-at-north-koreas-malware-backbone
-
Novel MoonPeak RAT leveraged by North Korean hackers
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/novel-moonpeak-rat-leveraged-by-north-korean-hackers
-
North Korean Hackers Pivot Away From Public Cloud
Kimsuky, or a Related Group, Deploys XenoRAT Variant. A North Korean hacking team hastily pivoted from using publicly available cloud computing storag… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korean-hackers-pivot-away-from-public-cloud-a-26122
-
North Korean hacker got hired by US security vendor, immediately loaded malware
First seen on arstechnica.com Jump to article: arstechnica.com/
-
North Korea-linked APT used a new RAT called MoonPeak
North Korea-linked APT Kimsuky is likely behind a new remote access trojan called MoonPeak used in a recent campaign spotted by Cisco Talos. Cisco Tal… First seen on securityaffairs.com Jump to article: securityaffairs.com/167340/malware/north-korea-apt-moonpeaknorth.html
-
0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193)
CVE-2024-38193, an actively exploited zero-day that Microsoft patched earlier this month, has been leveraged by North Korean hackers to install a root… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/20/0-day-in-windows-driver-exploited-by-north-korean-hackers-to-deliver-rootkit-cve-2024-38193/
-
Windows driver zero-day exploited by Lazarus hackers to install rootkit
The notorious North Korean Lazarus hacking group exploited a zero-day flaw in the Windows AFD.sys driver to elevate privileges and install the FUDModu… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-driver-zero-day-exploited-by-lazarus-hackers-to-install-rootkit/
-
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT
Microsoft addressed a zero-day vulnerability actively exploited by the North-Korea-linked Lazarus APT group. Microsoft has addressed a zero-day vulner… First seen on securityaffairs.com Jump to article: securityaffairs.com/167246/apt/microsoft-zero-day-cve-2024-38193-lazarus.html
-
North Korea Exploited Windows Zero-Day to Deploy Fudmodule
Lazarus Espionage Group’s Sophisticated Malware Evades Antivirus Monitoring. North Korea’s Lazarus hacking team, which focuses on cryptocurrency theft… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-exploited-windows-zero-day-to-deploy-fudmodule-a-26076
-
Windows Zero-Day Attack Linked to North Korea’s Lazarus APT
The vulnerability, tracked as CVE-2024-38193 and marked as ‘actively exploited’ by Microsoft, allows SYSTEM privileges on the latest Windows operating… First seen on securityweek.com Jump to article: www.securityweek.com/windows-zero-day-attack-linked-to-north-koreas-lazarus-apt/
-
BeaverTail Malware Attacking Windows Users Via Weaponized Games
Researchers uncovered a new malware campaign dubbed BeaverTail, a North Korean cyber espionage malware family primarily focusing on job seekers. Initi… First seen on gbhackers.com Jump to article: gbhackers.com/beavertail-malware-weaponized-games-attack/
-
DOJ Charges Nashville Man for Helping North Koreans Get U.S. Tech Jobs
The U.S. Department of Justice (DoJ) on Thursday charged a 38-year-old individual from Nashville, Tennessee, for allegedly running a laptop farm to he… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/doj-charges-nashville-man-for-helping.html
-
University Professors Targeted by North Korean Cyber Espionage Group
The North Korea-linked threat actor known as Kimsuky has been linked to a new set of attacks targeting university staff, researchers, and professors f… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/university-professors-targeted-by-north.html
-
Kimsuky APT Group Targets University Researchers in Espionage Campaign
The North Korean state-backed hacking group known as Kimsuky is at it again, this time setting its sights on university researchers and professors in … First seen on securityonline.info Jump to article: securityonline.info/kimsuky-apt-group-targets-university-researchers-in-espionage-campaign/
-
North Korean chap charged for attacks on US hospitals, military, NASA and even China
First seen on theregister.com Jump to article: www.theregister.com/2024/07/26/andariel_indictment_north_korea/
-
Passwort Folge 10: Nordkoreas digitale Armeen
Von Sony-Hack bis Wannacry: Nordkorea mischt fleißig im internationalen Cybercrime mit. Die Podcast-Hosts schauen hinter die Kulissen des abgeschottet… First seen on heise.de Jump to article: www.heise.de/news/Passwort-Folge-10-Nordkoreas-digitale-Armeen-9819831.html
-
North Korean Hackers Exploit VPN Vulnerabilities to Breach Networks
Tags: breach, cyberattack, cybercrime, exploit, government, group, hacker, network, north-korea, vpn, vulnerabilityCybercriminal groups supported by the North Korean government, such as Kimsuky (APT43) and Andariel (APT45), have recently escalated cyberattacks on S… First seen on securityonline.info Jump to article: securityonline.info/north-korean-hackers-exploit-vpn-vulnerabilities-to-breach-networks/
-
South Korean military vehicle data compromised by North Korea
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/south-korean-military-vehicle-data-compromised-by-north-korea
-
Linux Malware liefert Beweis: Lazarus steckt hinter der 3CX Supply Chain Attacke
eiten mit neu entdeckter Linux-Malware, die bei der Operation DreamJob verwendet wurde, bestätigen die Theorie, dass die berüchtigte, mit Nordkorea ve… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2023/04/20/linux-malware-liefert-beweis-lazarus-steckt-hinter-der-3cx-supply-chain-attacke/
-
Nashville man arrested for aiding North Korean remote IT worker fraud
First seen on cyberscoop.com Jump to article: cyberscoop.com/north-korea-it-worker-fraud-tennesee-justice-department/
-
North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry
The North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the JavaScript package registry with the … First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/north-korean-hackers-moonstone-sleet.html
-
US DoJ dismantled remote IT worker fraud schemes run by North Korea
The U.S. DoJ arrested a Tennessee man for running a >>laptop farm
-
Department of Justice Disrupts North Korean IT Worker Fraud Scheme with Arrest of Nashville Resident
The U.S. Department of Justice announced on Thursday charges against Matthew Isaac Knoot, a 38-year-old Nashville resident, for his alleged role in a … First seen on securityonline.info Jump to article: securityonline.info/department-of-justice-disrupts-north-korean-it-worker-fraud-scheme-with-arrest-of-nashville-resident/
-
Security biz KnowBe4 hired fake North Korean techie, who got straight to work … on evil
Tags: north-koreaFirst seen on theregister.com Jump to article: www.theregister.com/2024/07/24/knowbe4_north_korean/
-
South Korea Reports: 8,400 North Koreans in Cyber Warfare Operations
According to recent data, the number of cybercrime specialists in North Korea has reached approximately 8,400, marking a 20% increase compared to two … First seen on securityonline.info Jump to article: securityonline.info/south-korea-reports-8400-north-koreans-in-cyber-warfare-operations/
-
North Korean Hackers Exploit VPN Update Flaw to Deploy Malware
Tags: advisory, cyber, cybersecurity, exploit, flaw, hacker, intelligence, korea, malware, north-korea, update, vpnSouth Korea’s national security and intelligence agencies have recently issued a joint cybersecurity advisory highlighting a significant cyber threat…. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/north-korean-hackers-exploit-vpn-update-flaw-to-deploy-malware/
-
South Korea says DPRK hackers stole spy plane technical data
South Korea’s ruling party, People Power Party (PPP), has issued an announcement stating that North Korean hackers have stolen crucial information abo… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/south-korea-says-dprk-hackers-stole-spy-plane-technical-data/
-
Justice Department Disrupts North Korean ‘Laptop Farm’ Operation
Law enforcement authorities in the U.S. have arrested a Tennessee man accused of running a laptop farm that helped North Korean IT workers secure remo… First seen on securityweek.com Jump to article: www.securityweek.com/justice-department-disrupts-north-korean-laptop-farm-operation/
-
North Korea Kimsuky Launch Phishing Attacks on Universities
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korea-kimsuky-phishing/