#lazarus-group
#lazarus-group
[ follow ]
#north-korea #cybersecurity #cyber-espionage #supply-chain-attacks #npm #pypi #dprk #cryptocurrency-theft
Information security
fromThe Hacker News
2 months agoNorth Korea-Linked Hackers Steal $2.02 Billion in 2025, Leading Global Crypto Theft
North Korean-linked threat actors stole at least $2.02 billion in cryptocurrency in 2025, driving a global surge and accounting for a record share of service compromises.
fromThe Hacker News
2 months agoResearchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera
The operation began when NorthScan's Heiner García impersonated a U.S. developer targeted by a Lazarus recruiter using the alias "Aaron" (also known as "Blaze"). Posing as a job-placement "business," Blaze attempted to hire the fake developer as a frontman; a known Chollima tactic used to slip North Korean IT workers into Western companies, mainly in the finance, crypto, healthcare, and engineering sectors.
Information security
Information security
fromThe Hacker News
5 months agoLazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE
Lazarus Group used a Telegram social-engineering campaign to deliver PondRAT, ThemeForestRAT, and RemotePE, enabling credential theft and network discovery in a DeFi organization.
fromTheregister
6 months agoLazarus Group rises again, this time with fake FOSS
Lazarus Group has increasingly pivoted from disruption to long-term infiltration, using tailored malware, modular payloads, and infrastructure evasion techniques to achieve persistent access to high-value targets - including the open source software ecosystem.
Privacy professionals
[ Load more ]