north
-
Researchers have shed light recently on the sophisticated tactics, techniques, and procedures (TTPs) employed by North Korean hackers. This comprehensive analysis, spanning nearly three years, focuses on targeted digital threats against civil society organizations (CSOs) in South Korea. The research highlights the critical role of CSOs in identifying and mitigating these threats, leveraging direct engagement…
-
In a concerning development, the North Korean-backed hacking group Kimsuky has intensified its use of custom-built tools to exploit Remote Desktop Protocol (RDP) for controlling compromised systems. AhnLab Security Intelligence Center (ASEC) reports that the group has developed a proprietary version of the open-source RDP Wrapper to enable remote desktop access on machines where this…
-
New malware strain a continuation of the North Korean Contagious Interview job lure campaign first described last December.
-
New malware strain a continuation of the North Korean Contagious Interview job lure campaign first described last December.
-
Stealing crypto is so 2024. Supply-chain attacks leading to data exfil pays off better? North Korea’s Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing as of earlier this month, according to security researchers.…
-
Stealing crypto is so 2024. Supply-chain attacks leading to data exfil pays off better? North Korea’s Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing as of earlier this month, according to security researchers.…
-
The AhnLab Security Intelligence Center (ASEC) has uncovered details of the Andariel threat group’s use of a sophisticated The post North Korea’s Andariel Group Deploys New RID Hijacking Technique for Stealthy Attacks appeared first on Cybersecurity News.
-
Four former officials from North Macedonia’s ruling party VMRO-DPMNE on Thursday were released by a court after being convicted for organizing a violent attack on the Parliament in 2017. Trajko Veljanovksi, a former parliamentary speaker, along with Spiro Ristovski and Mile Janakieski, both former cabinet ministers, and Vladimir Atanasovski, a former head of national security,…
-
A federal grand jury has returned an indictment charging Aly Cherif, from the Ivory Coast, with cyberstalking resulting in death, wire fraud, and related crimes.
-
The FBI is on a mission to raise awareness about the threat that North Korean IT workers present to organizations in the US and around the world. While corporate espionage comes to mind first, the threat goes beyond that: “In recent months, in addition to data extortion, FBI has observed North Korean IT workers leveraging…
-
Security pros say the link Secureworks made to a decade-old DPRK crowdfunding campaign are credible.
-
Attacks by North Korean state-backed attackers have not only resulted in the theft of $235 million from major Indian cryptocurrency exchange WazirX in July but also led to losses of $308 million for DMM Bitcoin, $100 million for Radiant Capital and Upbit combined, and $16.13 million for Rain Management.
-
Attacks by North Korean state-backed attackers have not only resulted in the theft of $235 million from major Indian cryptocurrency exchange WazirX in July but also led to losses of $308 million for DMM Bitcoin, $100 million for Radiant Capital and Upbit combined, and $16.13 million for Rain Management.
-
Illustration by Alex Castro / The Verge Hackers in North Korea stole a total of $659 million in crypto across several heists in 2024, according to a joint statement issued today by the US, Japan, and South Korea. The report specified five such incidents, like the $235 million theft from the Indian crypto exchange WazirX…
-
Investigation into the cause of the incident and efforts to restore impacted systems are still underway, said officials in a Dec. 30 announcement emphasizing that the cyberattack had not affected the city’s emergency response services.
-
Since 2013, the advanced persistent threat (APT) known as Kimsuky, which the North Korean government sponsors, has been actively conducting cyber espionage operations. It employs advanced malware, spearphishing, and social engineering tactics to infiltrate target networks and exfiltrate sensitive data, focusing on South Korea and other countries with strategic interests in the Korean Peninsula. A…
-
CyberScoop reports that South Korea has moved to impose economic sanctions against 15 North Koreans allegedly part of the country’s Ministry of Munitions Industry and the Chosun Geumjeong Economic Information Technology Exchange Corporation over their roles in the global fake IT worker scheme that facilitated widespread cryptocurrency exfiltration and other cyberattacks meant to support North…
-
CyberScoop reports that South Korea has moved to impose economic sanctions against 15 North Koreans allegedly part of the country’s Ministry of Munitions Industry and the Chosun Geumjeong Economic Information Technology Exchange Corporation over their roles in the global fake IT worker scheme that facilitated widespread cryptocurrency exfiltration and other cyberattacks meant to support North…
-
Japanese and U.S. authorities formally attributed the May 2024 cyberattack on DMM Bitcoin, a prominent cryptocurrency exchange, to North Korean cyber actors. The breach resulted in the theft of $308M in digital assets. The agencies stated that the theft is linked to TraderTraitor threat activity, also tracked as Jade Sleet, UNC4899, and Slow Pisces. TraderTraitor…