Security News > 2024 > October > North Korean hackers pave the way for Play ransomware
North Korean state-sponsored hackers – Jumpy Pisces, aka Andariel, aka Onyx Sleet – have been spotted burrowing into enterprise systems, then seemingly handing matters over to the Play ransomware group. Timeline of the attack (Source: Palo Alto Networks) The attack The ransomware attack was investigated by Palo Alto Networks’ Unit 42 in September 2024, and they determined that North Korean hackers: Gained access to a host using a compromised users account Moved laterally to other … More → The post North Korean hackers pave the way for Play ransomware appeared first on Help Net Security.
News URL
https://www.helpnetsecurity.com/2024/10/31/north-korean-hackers-play-ransomware/
Related news
- North Korean govt hackers linked to Play ransomware attack (source)
- North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware (source)
- North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware (source)
- Microsoft: Vanilla Tempest hackers hit healthcare with INC ransomware (source)
- North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks (source)
- North Korean Group Collaborates with Play Ransomware in Significant Cyber Attack (source)