Dec 29, 2023NewsroomMalware / Cyber Threat Nation-state actors affiliated to North Korea have been observed using spear-phishing attacks to deliver an assortment of backdoors and tools such as AppleSeed, Meterpreter, and TinyNuke to seize control of compromised machines. South Korea-based cybersecurity company AhnLab attributed the activity to an advanced persistent threat group known as Kimsuky. […]
Nov 30, 2023NewsroomCryptocurrency / Cyberattacks Threat actors from the Democratic People’s Republic of Korea (DPRK) are increasingly targeting the cryptocurrency sector as a major revenue generation mechanism since at least 2017 to get around sanctions imposed against the country. “Even though movement in and out of and within the country is heavily restricted, and its […]
The United Kingdom and South Korea issued a joint advisory warning about software supply chain attacks from North Korean (DPRK) state-linked hackers. The advisory was published Thursday as the nations’ two governments announced a new strategic cyber partnership, pledging to work together “to disrupt and deter DPRK malicious cyber capabilities and activities that contribute to […]
The United States, South Korea and Japan have decided to establish a high-level consultative body on cyber issues, primarily to tackle North Korea’s cyber activities, the office of South Korea’s president announced on Monday. The main purpose of the group, which will meet on a quarterly basis, is to strengthen “practical joint response capabilities to […]
Nov 01, 2023NewsroomMalware / Cryptocurrency State-sponsored threat actors from the Democratic People’s Republic of Korea (DPRK) have been found targeting blockchain engineers of an unnamed crypto exchange platform via Discord with a novel macOS malware dubbed KANDYKORN. Elastic Security Labs said the activity, traced back to April 2023, exhibits overlaps with the infamous adversarial collective […]
Sep 08, 2023THNZero Day / Cyber Attack Threat actors associated with North Korea are continuing to target the cybersecurity community using a zero-day bug in unspecified software over the past several weeks to infiltrate their machines. The findings come from Google’s Threat Analysis Group (TAG), which found the adversary setting up fake accounts on social […]