Security News

Russia joins North Korea in sending state-sponsored cyber troops to pick on TeamCity users
2023-12-14 14:12

Updated The offensive cyber unit linked to Russia's Foreign Intelligence Service is exploiting the critical vulnerability affecting the JetBrains TeamCity CI/CD server at scale, and has been since September, authorities warn. The exploit in TeamCity could give attackers enough access to manipulate a software's source code, sign certificates, and compile and deploy processes, the advisory says.

N. Korea's Kimsuky Targeting South Korean Research Institutes with Backdoor Attacks
2023-12-08 13:33

The North Korean threat actor known as Kimsuky has been observed targeting research institutes in South Korea as part of a spear-phishing campaign with the ultimate goal of distributing backdoors...

North Korea's state hackers stole $3 billion in crypto since 2017
2023-12-03 17:11

North Korean-backed state hackers have stolen an estimated $3 billion in a long string of hacks targeting the cryptocurrency industry over the last six years since January 2017. "Since 2017, North Korea has significantly increased its focus on the cryptocurrency industry, stealing an estimated $3 billion worth of cryptocurrency," Recorded Future analysts said.

Chinese Hackers Using SugarGh0st RAT to Target South Korea and Uzbekistan
2023-12-01 10:49

A suspected Chinese-speaking threat actor has been attributed to a malicious campaign that targets the Uzbekistan Ministry of Foreign Affairs and South Korean users with a remote access trojan...

US govt sanctions North Korea’s Kimsuky hacking group
2023-11-30 22:08

The Treasury Department's Office of Foreign Assets Control has sanctioned the North Korean-backed Kimsuky hacking group for stealing intelligence in support of the country's strategic goals. OFAC has also sanctioned eight North Korean agents for facilitating sanctions evasion and supporting their country's weapons of mass destruction programs.

North Korea's Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks
2023-11-30 11:55

Threat actors from the Democratic People's Republic of Korea (DPRK) are increasingly targeting the cryptocurrency sector as a major revenue generation mechanism since at least 2017 to get around...

UK and South Korea: Hackers use zero-day in supply-chain attack
2023-11-24 17:28

The attack started with compromising a media outlet's website to embed malicious scripts into an article, allowing for a 'watering hole' attack. State-backed North Korean hacking operations consistently rely on supply chain attacks and the exploitation of zero-day vulnerabilities as part of their cyber warfare tactics.

Industry piles in on North Korea for sustained rampage on software supply chains
2023-11-23 13:38

Kim’s cyber cronies becoming more active, sophisticated in attempts to pwn global orgs The national cybersecurity organizations of the UK and the Republic of Korea (ROK) have issued a joint...

North Korea makes finding a gig even harder by attacking candidates and employers
2023-11-23 01:33

That GitHub repo an interviewer wants you to work on could be malware Palo Alto Networks' Unit 42 has detailed a pair of job market hacking schemes linked to state-sponsored actors in North Korea:...

Fresh find shines new light on North Korea’s latest macOS malware
2023-11-07 14:44

Months of work reveals how this tricky malware family targets... the financial services sector A brand-new macOS malware strain from North Korean state-sponsored hackers has been spotted in the wild.…