Malwarebytes cybersecurity experts: The malware campaign exploits Google searches on AnyDesk with a decoy site and a legitimate marketing platform.
New Alert from the US CERT: North Korean Malicious Cyber Activity detected in framework of Hidden Cobra and spreaded by Joanap and Brambul malware
The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) released a joint Technical Alert (TA) that identifies two families of malware—referred to as Joanap and Brambul—used by the North Korean government. It has been reported by the US-CERT. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA. In conjunction with the release of this TA, NCCIC has released a Malware Analysis Report (MAR) that provides analysis on samples of Joanap and Brambul malware.