Tag: lazarus
-
Feds reach for sliver of crypto-cash nicked by North Korea’s notorious Lazarus Group
A couple million will do for a start “¦ but Kim’s crews are suspected of stealing much more First seen on theregister.com Jump to article: www.theregister.com/2024/10/08/us_lazarus_group_crypto_seizure/
-
DOJ Wants to Claw Back $2.67 Million Stolen by Lazarus Group
The DOJ wants to seize $2.67 million from the $69 million in crypto the North Korean-backed Lazarus Group stole in from the options exchange Deribit in 2022 and online gambling platform Stake.com last year. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/doj-wants-to-claw-back-2-67-million-stolen-by-lazarus-group/
-
New PondRAT Malware Hidden in Python Packages Targets Software Developers
Threat actors with ties to North Korea have been observed using poisoned Python packages as a way to deliver a new malware called PondRAT as part of an ongoing campaign.PondRAT, according to new findings from Palo Alto Networks Unit 42, is assessed to be a lighter version of POOLRAT (aka SIMPLESEA), a known macOS backdoor…
-
Cryptohack Roundup: Delta Prime, Ethena Exploits
Also: US SEC Settles With Prager Metis, Rari Capital. This week, Delta Prime and Ethena were hacked, Lazarus’ funds were frozen, the SEC settled with Prager Metis and Rari Capital, Sam Bankman-Fried sought a new trial, the SEC accused NanoBit and CoinW6 of scams, the CTFC sought to fight pig butchering, and Wormhole integrated World…
-
Lazarus lockt Mitarbeiter mit trojanisierten Programmieraufgaben: Der Fall eines spanischen Luft- und Raumfahrtunternehmens
nalyse eines Lazarus-Angriffs, der Mitarbeiter eines Luft- und Raumfahrtunternehmens anlockte, entdeckten ESET-Forscher eine öffentlich nicht dokument… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/eset-research/lazarus-lockt-mitarbeiter-mit-trojanisierten-programmieraufgaben-der-fall-eines-spanischen-luft-und-raumfahrtunternehmens/
-
CVE-2024-38193 Exploited by Lazarus Group in Targeted Attacks
A newly patched security vulnerability in Microsoft Windows has been actively exploited by the Lazarus Group, a notorious state-sponsored hacking grou… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-38193-lazarus-group/
-
The Lasting Repercussions of the Sony Hack
The Sony Pictures hack in 2014 by the North Korean Lazarus Group was a seminal event both in Hollywood and in the security community, bringing to ligh… First seen on duo.com Jump to article: duo.com/decipher/the-lasting-repercussions-of-the-sony-hack
-
Lazarus Group Targets Developers in Fresh VMConnect Campaign
Lazarus Group has been observed impersonating Capital One staff to lure developers into downloading malware on open source repositories Source: www.infosecurity-magazine.com/news/lazarus-developers-vmconnect/ comments: 0
-
Fake Recruiter Coding Tests Target Developers with Malicious Python Packages in Ongoing North Korean Cyber Campaign
A new report from ReversingLabs has uncovered a sophisticated cyber campaign targeting developers, using fake recruiter tactics to deliver malicious Python packages. Linked to North Korea’s Lazarus Group, this campaign... Source: securityonline.info/fake-recruiter-coding-tests-target-developers-with-malicious-python-packages-in-ongoing-north-korean-cyber-campaign/ comments: 0
-
North Korean Hackers Launch Job Interview Scam to Deploy BeaverTail and InvisibleFerret Malware
Lazarus Group, the infamous North Korean hacking collective, has continued its aggressive campaign in 2024, evolving its strategies and expanding its … First seen on securityonline.info Jump to article: securityonline.info/north-korean-hackers-launch-job-interview-scam-to-deploy-beavertail-and-invisibleferret-malware/
-
Fake password manager coding test used to hack Python developers
Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management products that include malware. Source: www.bleepingcomputer.com/news/security/fake-password-manager-coding-test-used-to-hack-python-developers/ comments: 0
-
Lazarus Group tricks developers to load malware via fake recruiting tests
Source: www.scmagazine.com/news/lazarus-group-tricks-developers-to-load-malware-via-fake-recruiting-tests comments: 0
-
Ongoing Lazarus Group campaign sets sights on blockchain pros
Source: www.scmagazine.com/brief/ongoing-lazarus-group-campaign-sets-sights-on-blockchain-pros comments: 0
-
Lazarus Hackers Attacking Job-Seekers to Deliver Javascript Malware
The Lazarus Group is one of the most notorious hacker groups linked to the North Korean government.The group is known for its cyberattacks and has bee… First seen on gbhackers.com Jump to article: gbhackers.com/lazarus-hackers-attacking-job-seekers/
-
Russian National Arrested for Laundering Crypto Payments from Lazarus Group
Argentine authorities have arrested a Russian national accused of laundering cryptocurrency payments linked to the notorious North Korean Lazarus Grou… First seen on gbhackers.com Jump to article: gbhackers.com/russian-national-arrested/
-
0-day-Schwachstelle CVE-2024-38193 wurde durch Lazarus angegriffen
Zum 13. August 2024 hat Microsoft die 0-day-Schwachstelle CVE-2024-38193 im Treiber afd.sys mit einem Sicherheitsupdate geschlossen. Dort hieß es vage… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/08/20/windows-0-day-schwachstelle-cve-2024-38193-wurde-durch-lazarus-angegriffen/
-
Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group
A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with Nort… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/microsoft-patches-zero-day-flaw.html
-
Russian national arrested in Argentina for laundering money of crooks and Lazarus APT
A Russian national was arrested in Argentina for laundering proceeds from illicit actors, including North Korea-linked Lazarus Group. This week, the A… First seen on securityaffairs.com Jump to article: securityaffairs.com/167485/cyber-crime/russian-national-arrested-laundering-lazarus-funds.html
-
Russian laundering millions for Lazarus hackers arrested in Argentina
The federal police in Argentina (PFA) have arrested a 29-year-old Russian national in Buenos Aires, who is facing money laundering charges related to … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/legal/russian-laundering-millions-for-lazarus-hackers-arrested-in-argentina/
-
Lazarus Group Exploits Microsoft Zero-Days CVE-2024-38193, Patch Urgently
Last week, Microsoft addressed multiple high-severity security vulnerabilities in its security updates, some of which have already been exploited by h… First seen on securityonline.info Jump to article: securityonline.info/lazarus-group-exploits-microsoft-zero-days-cve-2024-38193-patch-urgently/
-
Patched Windows Zero-Day Used in Lazarus Attack
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/patched-windows-zero-day-used-in-lazarus-attack
-
Windows driver zero-day exploited by Lazarus hackers to install rootkit
The notorious North Korean Lazarus hacking group exploited a zero-day flaw in the Windows AFD.sys driver to elevate privileges and install the FUDModu… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-driver-zero-day-exploited-by-lazarus-hackers-to-install-rootkit/
-
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT
Microsoft addressed a zero-day vulnerability actively exploited by the North-Korea-linked Lazarus APT group. Microsoft has addressed a zero-day vulner… First seen on securityaffairs.com Jump to article: securityaffairs.com/167246/apt/microsoft-zero-day-cve-2024-38193-lazarus.html
-
North Korea Exploited Windows Zero-Day to Deploy Fudmodule
Lazarus Espionage Group’s Sophisticated Malware Evades Antivirus Monitoring. North Korea’s Lazarus hacking team, which focuses on cryptocurrency theft… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-exploited-windows-zero-day-to-deploy-fudmodule-a-26076
-
Windows Zero-Day Attack Linked to North Korea’s Lazarus APT
The vulnerability, tracked as CVE-2024-38193 and marked as ‘actively exploited’ by Microsoft, allows SYSTEM privileges on the latest Windows operating… First seen on securityweek.com Jump to article: www.securityweek.com/windows-zero-day-attack-linked-to-north-koreas-lazarus-apt/
-
Lazarus Hacker Group Exploited Microsoft Windows Zero-day
The notorious Lazarus hacker group has been identified as exploiting a zero-day vulnerability in Microsoft Windows, specifically targeting the Windows… First seen on gbhackers.com Jump to article: gbhackers.com/lazarus-microsoft-zero-day/
-
Linux Malware liefert Beweis: Lazarus steckt hinter der 3CX Supply Chain Attacke
eiten mit neu entdeckter Linux-Malware, die bei der Operation DreamJob verwendet wurde, bestätigen die Theorie, dass die berüchtigte, mit Nordkorea ve… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2023/04/20/linux-malware-liefert-beweis-lazarus-steckt-hinter-der-3cx-supply-chain-attacke/
-
Over $150K laundered by Lazarus Group via Cambodian payments firm
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/over-150k-laundered-by-lazarus-group-via-cambodian-payments-firm
-
WinorDLL64: Backdoor aus dem Lazarus Arsenal?
egion und die Überschneidungen in Verhalten und Code lassen vermuten, dass das Tool von der berüchtigten, mit Nordkorea verbündeten APT-Gruppe verwend… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2023/02/23/winordll64-backdoor-aus-dem-lazarus-arsenal/