Security News

Memory-safe languages so hot right now, agrees Lazarus Group as it slings DLang malware
2023-12-11 18:08

Research into Lazarus Group's attacks using Log4Shell has revealed novel malware strains written in an atypical programming language. At least three new DLang-based malware strains have been used in attacks on worldwide organizations spanning the manufacturing, agriculture, and physical security industries, Cisco Talos revealed today.

Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
2023-12-11 13:00

The notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that involves the opportunistic exploitation of security flaws in Log4j to...

North Korea's Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks
2023-11-30 11:55

Threat actors from the Democratic People's Republic of Korea (DPRK) are increasingly targeting the cryptocurrency sector as a major revenue generation mechanism since at least 2017 to get around...

N. Korean Lazarus Group Targets Software Vendor Using Known Flaws
2023-10-27 14:57

The North Korea-aligned Lazarus Group has been attributed as behind a new campaign in which an unnamed software vendor was compromised through the exploitation of known security flaws in another...

Lazarus Group Targeting Defense Experts with Fake Interviews via Trojanized VNC Apps
2023-10-18 14:51

The North Korea-linked Lazarus Group (aka Hidden Cobra or TEMP.Hermit) has been observed using trojanized versions of Virtual Network Computing (VNC) apps as lures to target the defense industry...

North Korea's Lazarus Group Launders $900 Million in Cryptocurrency
2023-10-06 14:56

As much as $7 billion in cryptocurrency has been illicitly laundered through cross-chain crime, with the North Korea-linked Lazarus Group linked to the theft of roughly $900 million of those...

Lazarus Group Impersonates Recruiter from Meta to Target Spanish Aerospace Firm
2023-09-29 12:10

The North Korea-linked Lazarus Group has been linked to a cyber espionage attack targeting an unnamed aerospace company in Spain in which employees of the firm were approached by the threat actor...

North Korea's Lazarus Group Suspected in $31 Million CoinEx Heist
2023-09-17 06:32

The North Korea-affiliated Lazarus Group has stolen nearly $240 million in cryptocurrency since June 2023, marking a significant escalation of its hacks. According to multiple reports from Certik, Elliptic, and ZachXBT, the infamous hacking group is said to be suspected behind the theft of $31 million in digital assets from the CoinEx exchange on September 12, 2023.

Researchers Warn of Cyber Weapons Used by Lazarus Group's Andariel Cluster
2023-09-05 10:15

The North Korean threat actor known as Andariel has been observed employing an arsenal of malicious tools in its cyber assaults against corporations and organizations in the southern counterpart. Ariel, also known by the names Nicket Hyatt or Silent Chollima, is a sub-cluster of the Lazarus Group that's known to be active since at least 2008.

Cisco Talos Research: New Lazarus Group Attack Malware Campaign Hits UK & US Businesses
2023-08-25 22:04

The Cisco Talos report exposes new malware used by the group to target Internet backbone infrastructure and healthcare organizations in the U.K. and the U.S. Two reports from cybersecurity company Cisco Talos provide intelligence about a new attack campaign from the North Korean threat actor Lazarus. The researchers observed the Lazarus group successfully compromise an internet backbone infrastructure provider in the U.K. in early 2023, deploying a new malware dubbed QuiteRAT. The initial compromise was done via exploitation of the CVE-2022-47966 vulnerability, which affects Zoho's ManageEngine ServiceDesk.