Browsing tag
The North Korea-aligned threat actor known as Andariel leveraged a previously undocumented malware called EarlyRat in attacks exploiting the Log4j Log4Shell vulnerability last year. “Andariel infects machines by executing a Log4j exploit, which, in turn, downloads further malware from the command-and-control (C2) server,” Kaspersky said in a new report. Also called Silent Chollima and Stonefly, […]
The North Korean advanced persistent threat (APT) actor dubbed ScarCruft is using weaponized Microsoft Compiled HTML Help (CHM) files to download additional malware onto targeted machines. According to multiple reports from AhnLab Security Emergency response Center (ASEC), SEKOIA.IO, and Zscaler, the development is illustrative of the group’s continuous efforts to refine and retool its tactics […]
The first ever incident possibly involving the ransomware family known as Maui occurred on April 15, 2021, aimed at an unnamed Japanese housing company. The disclosure from Kaspersky arrives a month after U.S. cybersecurity and intelligence agencies issued an advisory about the use of the ransomware strain by North Korean government-backed hackers to target the […]
So far, Konni RAT has managed to evade detection as only 3 security solutions on VirusTotal were able to detect the malware. The IT security researchers at Malwarebytes Labs have reported a new and ongoing malware campaign in which the prime target is Russia. The payload dropped by threat actors in this attack is the […]
Korea Atomic Energy Research Institute (KAERI), which is a government-owned organization in South Korea, has disclosed that its internal network was targeted by cybercriminals possibly operating from North Korea. The KAERI is a Seoul-funded research institute established in 1959. It is located in Daejeon and is responsible for designing and developing nuclear technologies for fuel […]
A North Korean threat actor active since 2012 has been behind a new espionage campaign targeting high-profile government officials associated with its southern counterpart to install an Android and Windows backdoor for collecting sensitive information. Cybersecurity firm Malwarebytes attributed the activity to a threat actor tracked as Kimsuky, with the targeted entities comprising of the […]
Did Lazarus hackers sabotage India’s moon mission Chandrayaan-2? Unlikely but something was indeed going on. The ambitious yet doomed lunar landing mission by the Indian Space Research Organization (ISRO) called Chandrayaan-2 is supposedly failed on purpose by North Korea, claim Indian cyber-security experts. However, ISRO officials have denied that the mission was failed due to […]
It’s another day and another bunch of reports that say more dark clouds have come over Huawei. The Chinese company has already become infamous after the US government put it on the Entity list — stopping Huawei from doing business with American companies. Now, a new collection of leaked documents allege that Huawei has secretly […]
The U.S. Department of Homeland Security (DHS) and the FBI have issued another joint alert about a new piece of malware that the prolific North Korean APT hacking group Hidden Cobra has actively been using in the wild. Hidden Cobra, also known as Lazarus Group and Guardians of Peace, is believed to be backed by […]
The data breach against North Korean Defectors came after hackers targeted computer at Resettling agency. Private data of approx. 1,000 North Korean Defectors present in the South have been exposed in a data breach which makes them vulnerable to all sorts of threats from the North, claims the officials from the Unification Ministry. According to […]
Academic organizations around the world have been attacked since last May Digital forensics specialists from the International Institute of Cyber Security report that hacker groups linked to North Korea have deployed a spear phishing campaign against multiple academic institutions around the world. The attack campaign includes emails with an attached document, trying to trick the […]
The US government accuses the Asian country of the deployment of a WannaCry malware campaign Ethical hacking specialists report that the US Department of Justice accused North Korean spy Park Jin-Hyok of computer fraud over the attack on Sony and the expensive WannaCry 2.0 attack that wreaked mayhem around the world, this just a few hours after […]
It is no secret that the US government has always suspected and even accused North Korea was carrying out ransomware attacks using the destructive WannaCry ransomware and for hacking Sony Pictures. But it merely has remained a suspicion so far. However, now the US authorities have found solid evidence of the involvement of North Korean […]
North Korea says there is no evidence to back the US claim it was behind the WannaCry ransomware attack. The US was “unreasonably accusing the DPRK [Democratic People’s Republic of Korea] without any forensic evidence”, a spokesman for North Korea’s Ministry of Foreign Affairs was quoted as saying by the country’s KCNA new agency. The […]
The WannaCry ransomware that affected millions of Windows machines earlier this year hardly needs an introduction. The deadly ransomware came into existence after an NSA hacking tool based on a Windows flaw was leaked by a hacker group called Shadow Brokers. All the time since the attack first came to the world’s attention, there has been […]
It’s just another day with just another radio station transmission getting hijacked. This time, unknown intruders compromised the transmission of a short-wave radio station 6400kHz in North Korea to run “The Final Countdown” song by Swedish rock band Europe, released in 1986. This incident took place on November 9th and revealed on social media by a […]
North Korean hackers stole a tremendous data from South Korea military database, including wartime contingency plans jointly drawn by the United States and South Korea. Stolen data also consist of incorporates techniques to “execute” the North Korean leadership. North Korea and South Korea have long had each other’s PC Networks in their sights. Mr. Rhee […]
Moscow-based threat intelligence firm Group-IB published a report that details evidence linking the Lazarus APT Group to North Korea. Researchers at security firm Group-IB released a report that links the notorious Lazarus APT to North Korea. The activity of the Lazarus Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks […]
On Friday, North Korea denied allegations that it was somehow responsible for the WannaCry ransomware outbreak that affected over 240,000 computers in nearly 200 countries across the globe. Speaking at a press conference, Kim In Ryong, North Korea’s deputy ambassador to the United Nations, called the allegations ridiculous and unfounded. “Whenever something strange happens, it […]
Short Bytes: The Democratic People’s Republic of Korea (DPRK) has created its own Android tablet, called Woolim, for distributing propaganda media and track its users. To limit the connectivity options, the Wi-Fi and Bluetooth chips have been removed. The users can just connect to North Korea’s restricted internet and local TV. In December 2015, we […]
Short Bytes: A team of researchers has found an exploit in the Linux-based Red Star OS 3 created by North Korea. They can install malware on a machine after the user clicks on a hyperlink giving them the access to the computer and remotely execute commands. North Korea built its own Linux distro which was dubbed […]