Security News

Maryland man pleads guilty to outsourcing US govt work to North Korean dev in China
2025-04-30 18:03

Feds say $970K scheme defrauded 13+ companies A Maryland man has pleaded guilty to fraud after landing a job with a contractor working on US government software, and then outsourcing the work to a...

The one interview question that will protect you from North Korean fake workers
2025-04-29 09:15

FBI and others list how to spot NK infiltrators, but AI will make it harder RSAC Concerned a new recruit might be a North Korean stooge out to steal intellectual property and then hit an org with...

North Korean Hackers Spread Malware via Fake Crypto Firms and Job Interview Lures
2025-04-25 14:05

North Korea-linked threat actors behind the Contagious Interview have set up front companies as a way to distribute malware during the fake hiring process. "In this new campaign, the threat actor...

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages
2025-04-05 14:23

The North Korean threat actors behind the ongoing Contagious Interview campaign are spreading their tentacles on the npm ecosystem by publishing more malicious packages that deliver the BeaverTail...

North Korean Hackers Disguised as IT Workers Targeting UK, European Companies, Google Finds
2025-04-04 08:21

The attackers pose as legitimate remote IT workers, looking to both generate revenue and access sensitive company data through employment. "Europe needs to wake up fast,” according to Google’s...

North Korean IT workers set their sights on European organizations
2025-04-02 09:49

North Korean IT workers are expanding their efforts beyond the US, and are seeking to fraudulently gain employment with organizations around the world, but most especially in Europe. According to...

North Korean IT worker army expands operations in Europe
2025-04-01 18:55

​North Korea's IT workers have expanded operations beyond the United States and are now increasingly targeting organizations across Europe. [...]

North Korean hackers adopt ClickFix attacks to target crypto firms
2025-03-31 15:56

The notorious North Korean Lazarus hacking group has reportedly adopted 'ClickFix' tactics to deploy malware targeting job seekers in the cryptocurrency industry, particularly centralized finance...

New North Korean Android spyware slips onto Google Play
2025-03-12 17:35

A new Android spyware named 'KoSpy' is linked to North Korean threat actors who have infiltrated Google Play and third-party app store APKPure through at least five malicious apps. [...]

North Korean Lazarus hackers infect hundreds via npm packages
2025-03-11 20:42

Six malicious packages have been identified on npm (Node package manager) linked to the notorious North Korean hacking group Lazarus. [...]