Cybercrime, North Korea targets SMEs with H0lyGh0st ransomware
Microsoft cybersecurity experts: The group, aka DEV-0530, has connections with PLUTONIUM (aka DarkSeoul or Andariel).
Cybercrime, Maui used by North Korean hackers to target Healthcare and Public Health
CISA, FBI and Treasury cybersecurity experts: The ransomware appears to be designed for manual execution by remote actors.
Cybercrime, North Korea’s IT experts try to get hired in the West to steal money
US cybersecurity experts: They exploit fictitious identities and pretend to be elsewhere. They are mainly proposed for remote jobs and involving cryptocurrencies.
Cyber Espionage, APT37 targets journalists with Goldbackdoor
Stairwell cybersecurity experts: The new North Korea’s malware spread via messages sent from the personal email of a former director of South Korea’s National Intelligence Service (NIS).
Cybercrime, Lazarus targets blockchain companies with TraderTraitor
The North Korea’s APT uses spear phishing emails to cryptocurrency firm employees that mimic recruitments for high-paying jobs: Goal: to download the malware.
Cybercrime, Russia in the future could imitate North Korea
Cybersecurity researchers concerned about a possible shift of pro-Moscow APTs, following international sanctions. From espionage they would move on to "making cash".
Cyber Espionage, Lazarus exploits Windows Update client to execute malware
Malwarebytes cybersecurity experts found 2 decoy documents in the North Korea APT’s campaign Lockheed Martin campaign, that use macro to spread malicious code.
North Korea, the ballistic missile tests are fought with DDoS attacks
The Asian country internet traffic has been put down for several hours after the last launch. Furthermore, the cyber warfare “responses” against Pyongyang are intensifying.
Cybercrime, the Renewable Energy sector targeted by an APT
The cybersecurity researcher Will Bushido discovered a cyber espionage campaign aimed to steal credential from at least 15 companies worldwide.
Cyber Espionage, North Korea’s APT37 spread Chinotto to monitor opponents
Kaspersky cybersecurity experts: The malware has been implemented in PowerShell, Windows and Android. The infection vector are spear phishing emails.