Tag: north-korea
-
US Says North Korean Hackers Exploiting Weak DMARC Settings
The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks. The post overnment warns of a… First seen on securityweek.com Jump to article: www.securityweek.com/us-says-north-korean-hackers-exploiting-weak-dmarc-settings/
-
Cryptohack Roundup: Geosyn Fraud Lawsuit
Also: North Korea Money Laundering and South Korean Crypto Police. This week, SEC filed suit against Geosyn, prosecutors fought dismissed Tornado Cash… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cryptohack-roundup-geosyn-fraud-lawsuit-a-24999
-
Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage
Microsoft has revealed that North Korea-linked state-sponsored cyber actors has begun to use artificial intelligence (AI) to make its operations more … First seen on thehackernews.com Jump to article: thehackernews.com/2024/04/microsoft-warns-north-korean-hackers.html
-
North Korea APT Triumvirate Spied on South Korean Defense Industry For Years
Lazarus, Kimsuky, and Andariel all got in on the action, stealing important data from firms responsible for defending their southern neighbors (from t… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/north-korea-apt-triumvirate-spied-on-south-korean-defense-industry-for-years
-
North Korean Hackers Target Dozens of Defense Companies
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korean-hackers-dozens/
-
South Korean defense firms subjected to North Korean APT attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/south-korean-defense-firms-subjected-to-north-korean-apt-attacks
-
North Korea-linked APT groups target South Korean defense contractors
The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities. The National Police Age… First seen on securityaffairs.com Jump to article: securityaffairs.com/162193/apt/north-korea-south-korean-defense-contractors.html
-
DPRK hacking groups breach South Korean defense contractors
The National Police Agency in South Korea issued an urgent warning today about North Korean hacking groups targeting defense industry entities to stea… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/dprk-hacking-groups-breach-south-korean-defense-contractors/
-
North Korean Hackers Hijack Antivirus Updates for Malware Delivery
A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners. The post Korea-linke… First seen on securityweek.com Jump to article: www.securityweek.com/north-korean-hackers-hijack-antivirus-updates-for-malware-delivery/
-
Hackers hijack antivirus updates to drop GuptiMiner malware
North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver crypt… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-hijack-antivirus-updates-to-drop-guptiminer-malware/
-
Execs in Japan busted for winning dev bids then outsourcing to North Koreans
Tags: north-koreaFirst seen on theregister.com Jump to article: www.theregister.com/2024/03/28/japan_nk_arrests/
-
North Korean Group Kimsuky Exploits DMARC and Web Beacons
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/kimsuky-exploits-dmarc-web-beacons/
-
A Vigilante Hacker Took Down North Korea’s Internet. Now He’s Taking Off His Mask
As P4x, Alejandro Caceres single-handedly disrupted the internet of an entire country. Then he tried to show the US military how it can”and should”ad… First seen on wired.com Jump to article: www.wired.com/story/p4x-north-korea-internet-hacker-identity-reveal/
-
Cyber-attacks by North Korea raked in $3bn to build nuclear weapons, UN monitors suspect
First seen on theguardian.com Jump to article: www.theguardian.com/world/2024/feb/08/cyber-attacks-by-north-korea-raked-in-3bn-to-build-nuclear-weapons-un-monitors-suspect
-
That Asian meal you eat on holidays could launder money for North Korea
First seen on theregister.com Jump to article: www.theregister.com/2024/03/25/un_north_korea_report/
-
Palo Alto Networks Releases Fixes for Firewall Zero-Day as Attribution Attempts Emerge
Palo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus. The post … First seen on securityweek.com Jump to article: www.securityweek.com/palo-alto-networks-releases-fixes-for-firewall-zero-day-as-first-attribution-attempts-emerge/
-
Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge
Palo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus. The post … First seen on securityweek.com Jump to article: www.securityweek.com/palo-alto-networks-releases-fixes-for-firewall-zero-day-as-first-attribution-attempts-emerge/
-
N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks
The North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leverag… First seen on thehackernews.com Jump to article: thehackernews.com/2024/03/n-korea-linked-kimsuky-shifts-to.html
-
It’s 2024 And North Korea’s Kimsuky Gang Is Exploiting Windows Help Files
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35682/Its-2024-And-North-Koreas-Kimsuky-Gang-Is-Exploiting-Windows-Help-Files.html
-
UN’s North Korean crypto heist investigation underway
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/uns-north-korean-crypto-heist-investigation-underway
-
North Korea-Linked Group Levels Multistage Cyberattack on South Korea
Kimsuky-attributed campaign uses eight steps to compromise systems ” from initial execution to downloading additional code from Dropbox, and executing… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/north-korea-linked-group-level-multistage-cyberattack-on-south-korea
-
North Korea’s Kimsuky Group Equipped to Exploit Windows Help files
Cybersecurity experts have uncovered a sophisticated cyber espionage campaign orchestrated by the North Korean threat actor group Kimsuky, Black Bansh… First seen on gbhackers.com Jump to article: gbhackers.com/kimsuky-group-exploit-windows-help-files/
-
Cryptohack Roundup: Ray Eviscerates Bankman-Fried
Also: CryptoFX Ponzi Scheme, North Korean Hackers Gonna Hack. This week, FTX emergency CEO John Ray filleted previous CEO Sam Bankman-Fried, the SEC c… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cryptohack-roundup-ray-eviscerates-bankman-fried-a-24682
-
North Koreas Kimsuky Group Equipped to Exploit Windows Help files
Cybersecurity experts have uncovered a sophisticated cyber espionage campaign orchestrated by the North Korean threat actor group Kimsuky, Black Bansh… First seen on gbhackers.com Jump to article: gbhackers.com/kimsuky-group-exploit-windows-help-files/
-
Its 2024 And North Koreas Kimsuky Gang Is Exploiting Windows Help Files
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35682/Its-2024-And-North-Koreas-Kimsuky-Gang-Is-Exploiting-Windows-Help-Files.html
-
Lazarus APT group returned to Tornado Cash to launder stolen funds
North Korea-linked Lazarus APT group allegedly using again the mixer platform Tornado Cash to launder $23 million. North Korea-linked Lazarus APT gro… First seen on securityaffairs.com Jump to article: securityaffairs.com/160525/breaking-news/lazarus-apt-returned-tornado-cash.html
-
Japan Blames North Korea for PyPI Supply Chain Cyberattack
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/japan-blames-north-korea-for-pypi-supply-chain-cyberattack
-
North Korea Hits ScreenConnect Bugs to Drop ‘ToddleShark’ Malware
North Korea’s latest espionage tool is tough to pin down, with random generators that throw detection mechanisms off its scent. The DPRK is using the … First seen on darkreading.com Jump to article: www.darkreading.com/remote-workforce/north-korea-screenconnect-bugs-toddleshark-malware
-
Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware
North Korean threat actors have exploited the recently disclosed security flaws in ConnectWise ScreenConnect to deploy a new malware called;TODDLERSHA… First seen on thehackernews.com Jump to article: thehackernews.com/2024/03/hackers-exploit-connectwise.html