Security News > 2024 > October > North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
2024-10-03 13:00
Threat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShell as part of a campaign targeting Cambodia and likely other Southeast Asian countries. The activity, dubbed SHROUDED#SLEEP by Securonix, is believed to be the handiwork of APT37, which is also known as InkySquid, Reaper, RedEyes, Ricochet Chollima,
News URL
https://thehackernews.com/2024/10/north-korean-hackers-using-new.html
Related news
- Hackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan Attacks (source)
- Radiant links $50 million crypto heist to North Korean hackers (source)
- 390,000 WordPress accounts stolen from hackers in supply chain attack (source)
- Winnti hackers target other threat actors with new Glutton PHP backdoor (source)
- Russian hackers use RDP proxies to steal data in MiTM attacks (source)
- North Korean hackers stole $1.3 billion worth of crypto this year (source)
- North Korean Hackers Pull Off $308M Bitcoin Heist from Crypto Firm DMM Bitcoin (source)
- FBI links North Korean hackers to $308 million crypto heist (source)
- North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign (source)
- Chinese hackers targeted sanctions office in Treasury attack (source)