#konni

[ follow ]
#spear-phishing #ai-generated-malware #endrat #blockchain-security #north-korean-cyber-espionage
Information security
fromThe Hacker News
2 days ago

Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers

North Korean Konni uses AI-generated PowerShell malware and spear-phishing to target blockchain developers, expand geographically, and deliver EndRAT via disguised links and insecure WordPress sites.
Information security
fromTheregister
2 months ago

North Korean spies used Google Find Hub as remote-wipe tool

The KONNI group abused Google's Find My Device to remotely wipe South Korean Android phones, erasing evidence and locking victims out of compromised devices.
fromThe Hacker News
2 months ago

Konni Hackers Turn Google's Find Hub into a Remote Data-Wiping Weapon

The North Korea-affiliated threat actor known as Konni (aka Earth Imp, Opal Sleet, Osmium, TA406, and Vedalia) has been attributed to a new set of attacks targeting both Android and Windows devices for data theft and remote control. What's notable about the attacks targeting Android devices is also the destructive ability of the threat actors to exploit Google's asset tracking services Find Hub (formerly Find My Device) to remotely reset victim devices, thereby leading to the unauthorized deletion of personal data. The activity was detected in early September 2025.
Information security
[ Load more ]