Security News > 2024 > October > North Korean hackers pave the way for Play ransomware
2024-10-31 10:42
North Korean state-sponsored hackers – Jumpy Pisces, aka Andariel, aka Onyx Sleet – have been spotted burrowing into enterprise systems, then seemingly handing matters over to the Play ransomware group. Timeline of the attack (Source: Palo Alto Networks) The attack The ransomware attack was investigated by Palo Alto Networks’ Unit 42 in September 2024, and they determined that North Korean hackers: Gained access to a host using a compromised users account Moved laterally to other … More → The post North Korean hackers pave the way for Play ransomware appeared first on Help Net Security.
News URL
https://www.helpnetsecurity.com/2024/10/31/north-korean-hackers-play-ransomware/
Related news
- Microsoft: North Korean hackers join Qilin ransomware gang (source)
- North Korean Hackers Target Freelance Developers in Job Scam to Deploy Malware (source)
- North Korean hackers linked to $1.5 billion ByBit crypto heist (source)
- OpenAI bans ChatGPT accounts used by North Korean hackers (source)
- North Korean Hackers Steal $1.5B in Cryptocurrency (source)
- Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers (source)
- Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
- Safe{Wallet} Confirms North Korean TraderTraitor Hackers Stole $1.5 Billion in Bybit Heist (source)
- North Korean Lazarus hackers infect hundreds via npm packages (source)
- Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom (source)