Tag: korea
-
North Korea Escalates Fake IT Worker Schemes to Extort Employers
by
in SecurityNewsSecureworks said it had observed a case where a fake North Korean IT contractor exfiltrated proprietary data before issuing a ransom demand to their f… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korea-it-worker-extort/
-
North Korea-linked APT37 exploited IE zero-day in a recent attack
by
in SecurityNews
Tags: attack, exploit, group, Internet, korea, north-korea, supply-chain, threat, vulnerability, zero-dayNorth Korea-linked group APT37 exploited an Internet Explorer zero-day vulnerability in a supply chain attack. A North Korea-linked threat actor, trac… First seen on securityaffairs.com Jump to article: securityaffairs.com/169983/apt/north-korea-apt37-ie-zero-day.html
-
N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware
by
in SecurityNewsThreat actors with ties to North Korea have been observed targeting job seekers in the tech industry to deliver updated versions of known malware fami… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/n-korean-hackers-use-fake-interviews-to.html
-
A new Linux variant of FASTCash malware targets financial systems
by
in SecurityNewsNorth Korea-linked actors deploy a new Linux variant of FASTCash malware to target financial systems, researcher HaxRob revealed. The cybersecurity re… First seen on securityaffairs.com Jump to article: securityaffairs.com/169860/malware/new-linux-variant-fastcash-malware-targets-financial-systems.html
-
The latest in North Korea’s fake IT worker scheme: Extorting the employers
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/north-korean-fake-it-workers-extorting-employers
-
North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
by
in SecurityNewsThreat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShel… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/north-korean-hackers-using-new.html
-
North Korea’s ‘Stonefly’ APT Swarms US Private Co’s. for Profit
by
in SecurityNewsDespite a $10 million bounty on one member, APT45 is not slowing down, pivoting from intelligence gathering to extorting funds for Kim Jong-Un’s regim… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/stonefly-apt-us-private-cos-north-korean-profit
-
CIA Seeks Informants In North Korea, Iran, And China
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36427/CIA-Seeks-Informants-In-North-Korea-Iran-And-China.html
-
N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks
by
in SecurityNewsThreat actors with ties to North Korea have been observed leveraging two new malware strains dubbed KLogEXE and FPSpy.The activity has been attributed… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/n-korean-hackers-deploy-new-klogexe-and.html
-
North Korea ‘Shrouded Sleep’ malware campaign targeting Cambodia, other Southeast Asian nations
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/north-korea-malware-espionage-cambodia
-
North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence
by
in SecurityNewsNorth Korea-linked APT Kimsuky has been linked to a cyberattack on Diehl Defence, a German manufacturer of advanced military systems. North Korea-link… First seen on securityaffairs.com Jump to article: securityaffairs.com/169162/apt/kimsuky-apt-hit-diehl-defence.html
-
North Korea-backed cyber espionage campaign targets UK military
by
in SecurityNewsNational Cyber Security Centre warns of global hacking effort to obtain nuclear and defence intelligence</p><p>North Korean state-backed h… First seen on theguardian.com Jump to article: www.theguardian.com/world/article/2024/jul/25/north-korea-backed-cyber-espionage-campaign-targets-uk-military
-
North Korea Hackers Linked to Breach of German Missile Manufacturer
by
in SecurityNewsThe targeting of Diehl Defence is significant because the company specializes in the production of missiles and ammunition. The post North Korea Hacke… First seen on securityweek.com Jump to article: www.securityweek.com/north-korea-hackers-linked-to-breach-of-german-missile-manufacturer/
-
New PondRAT Malware Hidden in Python Packages Targets Software Developers
by
in SecurityNewsThreat actors with ties to North Korea have been observed using poisoned Python packages as a way to deliver a new malware called PondRAT as part of a… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/new-pondrat-malware-hidden-in-python.html
-
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
by
in SecurityNewsA North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospac… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html
-
North Korea-linked APT Gleaming Pisces deliver new PondRAT backdoor via malicious Python packages
by
in SecurityNewsNorth Korea-linked APT group Gleaming Pisces is distributing a new malware called PondRAT through tainted Python packages. Unit 42 researchers uncover… First seen on securityaffairs.com Jump to article: securityaffairs.com/168781/apt/gleaming-pisces-malicious-python-packages.html
-
Telegram apologizes to South Korea and takes down smutty deepfakes
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/09/04/telegram_south_korea_deepfake_apology/
-
North Korea Targets Software Supply Chain Via PyPI
by
in SecurityNewsBackdoored Python Packages Likely Work of ‘Gleaming Pisces,’ Says Palo Alto. A North Korean hacking group with a history of a stealing cryptocurrency … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-targets-software-supply-chain-via-pypi-a-26344
-
UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure
by
in SecurityNewsMandiant has unveiled a new wave of cyber-espionage attacks orchestrated by the North Korea-linked group UNC2970. This group has recently employed a s… First seen on securityonline.info Jump to article: securityonline.info/unc2970s-backdoor-deployed-via-trojanized-pdf-reader-targets-critical-infrastructure/
-
New Android SpyAgent Malware Uses OCR to Steal Crypto Wallet Recovery Keys
Android device users in South Korea have emerged as a target of a new mobile malware campaign that delivers a new type of threat dubbed SpyAgent.The m… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/new-android-spyagent-malware-uses-ocr.html
-
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
by
in SecurityNewsThreat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operat… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-threat-actors-deploy.html
-
Windows 0-day was exploited by North Korea to install advanced rootkit
by
in SecurityNewsFirst seen on arstechnica.com Jump to article: arstechnica.com/
-
North Korea’s ‘Citrine Sleet’ APT Exploits Zero-Day Chromium Bug
by
in SecurityNewsMicrosoft warned that the DPRK’s latest innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/north-korean-apt-exploits-novel-chromium-windows-bugs-steal-crypto
-
North Korea Uses Fraudulent Job Lures to Launch Attacks
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/north-korea-uses-fraudulent-job-lures-to-launch-attacks
-
North Korea Targeting Crypto Industry, Says FBI
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korea-targeting-crypto/
-
FBI: North Korea Aggressively Hacking Cryptocurrency Firms
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36293/FBI-North-Korea-Aggressively-Hacking-Cryptocurrency-Firms.html
-
Kimsuky-linked hackers use similar tactics to attack Russia and South Korea, researchers say
First seen on therecord.media Jump to article: therecord.media/kimsuky-north-korea-hackers-targeting-russia-south-korea
-
North Korean Hackers Target Developers with Malicious npm Packages
by
in SecurityNewsThreat actors with ties to North Korea have been observed publishing a set of malicious packages to the npm registry, indicating coordinated and relen… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/north-korean-hackers-target-developers.html
-
APT60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
by
in CISOA South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WP… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/apt-c-60-group-exploit-wps-office-flaw.html