Data Breaches FBI Blames North Korea for $308M Cryptocurrency Hack as Losses Surge in 2024 The FBI said the target was tricked into downloading a malicious Python script under the guise of a pre-employment test hosted on GitHub. Ryan NaraineDecember 24, 2024
Malware & Threats North Korean Hackers Target macOS Users North Korean cryptocurrency thieves caught targeting macOS with fake PDF applications, backdoors and new persistence tactics. Ryan NaraineNovember 7, 2024
Nation-State North Korean Hackers Exploited Chrome Zero-Day for Cryptocurrency Theft The Lazarus APT created a deceptive website that exploited a Chrome zero-day to install malware and steal cryptocurrency. Ionut ArghireOctober 24, 2024
Malware & Threats Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine A fresh Mandiant report documents North Korea's APT45 as a distinct hacking team conducting cyberespionage and ransomware operations. Ryan NaraineJuly 25, 2024
Artificial Intelligence KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware KnowBe4 chief executive Stu Sjouwerman: “We sent them their Mac workstation, and the moment it was received, it immediately started to load malware." Ryan NaraineJuly 23, 2024
Malware & Threats Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack North Korean group Lazarus exploited AppLocker driver zero-day CVE-2024-21338 for privilege escalation in attacks involving FudModule rootkit. Eduard KovacsFebruary 29, 2024
Malware & Threats North Korean Hackers Developing Malware in Dlang Programming Language North Korean hackers have used Dlang-based malware in attacks against manufacturing, agriculture, and physical security organizations. Ionut ArghireDecember 11, 2023
Cybercrime North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report Recorded Future calculates that North Korean state-sponsored threat actors are believed to have stolen more than $3 billion in cryptocurrency. Ionut ArghireDecember 4, 2023
Malware & Threats Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers Google again catches a North Korean APT actor targeting security researchers with zero-days and rigged software tools. Ryan NaraineSeptember 7, 2023
Cyberwarfare North Korean APT Hacks Internet Infrastructure Provider via ManageEngine Flaw North Korea-linked Lazarus Group exploited a ManageEngine vulnerability to compromise an internet backbone infrastructure provider. Ionut ArghireAugust 25, 2023
Cybercrime UN Experts: North Korean Hackers Stole Record Virtual Assets North Korean hackers working for the government stole virtual assets last year estimated to be worth between $630 million and more than $1 billion, U.N. experts... Associated PressFebruary 8, 2023
Nation-State FBI Confirms North Korean Hackers Behind $100 Million Horizon Bridge Heist FBI says a North Korea-linked threat group known as Lazarus and APT38 is behind the $100 million Horizon bridge cryptocurrency heist. Eduard KovacsJanuary 24, 2023