Security News > 2024 > October > North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
2024-10-03 13:00
Threat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShell as part of a campaign targeting Cambodia and likely other Southeast Asian countries. The activity, dubbed SHROUDED#SLEEP by Securonix, is believed to be the handiwork of APT37, which is also known as InkySquid, Reaper, RedEyes, Ricochet Chollima,
News URL
https://thehackernews.com/2024/10/north-korean-hackers-using-new.html
Related news
- EastWind Attack Deploys PlugY and GrewApacha Backdoors Using Booby-Trapped LNK Files (source)
- Hackers Exploit PHP Vulnerability to Deploy Stealthy Msupedge Backdoor (source)
- 0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193) (source)
- Hackers use PHP exploit to backdoor Windows systems with new malware (source)
- North Korean Hackers Deploy New MoonPeak Trojan in Cyber Campaign (source)
- Unpatched AVTECH IP Camera Flaw Exploited by Hackers for Botnet Attacks (source)
- North Korean Hackers Target Developers with Malicious npm Packages (source)
- North Korean hackers exploit Chrome zero-day to deploy rootkit (source)
- North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit (source)
- Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack (source)