#lazarus-group

[ follow ]
#north-korea #cybersecurity #cyber-espionage #famous-chollima #remote-worker-infiltration #anyrun-sandbox
fromThe Hacker News
4 days ago

Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera

The operation began when NorthScan's Heiner García impersonated a U.S. developer targeted by a Lazarus recruiter using the alias "Aaron" (also known as "Blaze"). Posing as a job-placement "business," Blaze attempted to hire the fake developer as a frontman; a known Chollima tactic used to slip North Korean IT workers into Western companies, mainly in the finance, crypto, healthcare, and engineering sectors.
Information security
#north-korea
more#north-korea
Information security
fromTheregister
1 month ago

North Korean Dream Job attacks hit Europe's UAV sector

North Korea's Lazarus Group used Operation DreamJob fake job offers to deliver malware, compromise European UAV suppliers, and steal IP for espionage.
Information security
fromThe Hacker News
3 months ago

Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

Lazarus Group used a Telegram social-engineering campaign to deliver PondRAT, ThemeForestRAT, and RemotePE, enabling credential theft and network discovery in a DeFi organization.
fromTheregister
4 months ago

Lazarus Group rises again, this time with fake FOSS

Lazarus Group has increasingly pivoted from disruption to long-term infiltration, using tailored malware, modular payloads, and infrastructure evasion techniques to achieve persistent access to high-value targets - including the open source software ecosystem.
Privacy professionals
Cryptocurrency
fromFast Company
6 months ago

These crypto detectives helped crack North Korea's latest $1.5 billion blockchain heist

The largest cryptocurrency heist occurred at Bybit, resulting in a loss of $1.5 billion.
[ Load more ]