One Article Review
| Source |  RiskIQ |
|---|---|
| Identifiant | 8609991 |
| Date de publication | 2024-11-12 19:41:42 (vue: 2024-11-12 20:08:26) |
| Titre | Seoul accuses pro-Kremlin hackers of attacking websites over decision to monitor North Korean troops in Ukraine |
| Texte | #### Targeted Geolocations
- Korea
#### Targeted Industries
- Government Agencies & Services
- Food and Agriculture
## Snapshot
Pro-Russian hacker groups have escalated cyberattacks against South Korean targets following Seoul\'s decision to send observers to Ukraine, which coincided with [North Korea deploying troops alongside Russian forces](https://www.bbc.com/news/articles/c14le0p4310o). The surge in attacks predominantly targeted civilian and government websites, leading South Korea\'s presidential office to convene an emergency meeting and enhance cyber threat monitoring.
## Description
South Korean authorities report a rise in cyber activity from groups like Z Pentest, Alligator Black Hat, and [NoName057(16)](https://sip.security.microsoft.com/intel-explorer/articles/f85adcbc), known for DDoS attacks. While these groups claimed breaches at industrial facilities, including a grain warehouse, these assertions have not been confirmed by local officials. The developments come amid international condemnation of Moscow\'s alliance with Pyongyang, with thousands of North Korean soldiers reportedly stationed near the Ukrainian border in support of Russia.
## Microsoft Analysis and Additional OSINT Context
Russian cyber proxies and hacktivist groups often engage in cyber activities such as distributed denial-of-service (DDoS) attacks and other disruptions in support of Russian geopolitical goals. Security researchers have noted a growing overlap between hacktivist groups, financially-motivated cybercrime, and nation-state activity, especially since Russia\'s 2022 invasion of Ukraine, which has led many such groups to attack Ukraine and its allies under a hacktivist guise. In September, the US government issued a [joint advisory](https://www.cisa.gov/sites/default/files/2024-09/aa24-249a-russian-military-cyber-actors-target-us-and-global-critical-infrastructure.pdf) warning that threat groups affiliated with Russia\'s military intelligence service, including known cyber-criminals and enablers, are targeting global critical infrastructure and key resource sectors.
## References
[Seoul accuses pro-Kremlin hackers of attacking websites over decision to monitor North Korean troops in Ukraine](https://therecord.media/seoul-accuses-pro-kremlin-hackers-of-attacking-websites-ukraine). The Record by Recorded Future (accessed 2024-11-12)
## Copyright
**© Microsoft 2024**. All rights reserved. Reproduction or distribution of the content of this site, or any part thereof, without written permission of Microsoft is prohibited.
#### Targeted Geolocations - Korea #### Targeted Industries - Government Agencies & Services - Food and Agriculture ## Snapshot Pro-Russian hacker groups have escalated cyberattacks against South Korean targets following Seoul\'s decision to send observers to Ukraine, which coincided with [North Korea deploying troops alongside Russian forces](https://www.bbc.com/news/articles/c14le0p4310o). The surge in attacks predominantly targeted civilian and government websites, leading South Korea\'s presidential office to convene an emergency meeting and enhance cyber threat monitoring. ## Description South Korean authorities report a rise in cyber activity from groups like Z Pentest, Alligator Black Hat, and [NoName057(16)](https://sip.security.microsoft.com/intel-explorer/articles/f85adcbc), known for DDoS attacks. While these groups claimed breaches at industrial facilities, including a grain warehouse, these assertions have not been confirmed by local officials. The developments come amid international condemnation of Moscow\'s alliance with Pyongyang, with thousands of North Korean soldiers reportedly stationed near the Ukrainian border in support of Russia. ## Microsoft Analysis and Additional OSINT Context Russian cyber proxies and hacktivist groups often engage in cyber activities such as distributed denial-of-service (DDoS) a |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | #### **© 09/aa24 2022 2024 2024** 249a accessed accuses activities activity actors additional advisory affiliated against agencies agriculture all alliance allies alligator alongside amid analysis any are assertions attack attacking attacks authorities bbc been between black border breaches cisa civilian claimed coincided com/intel com/news/articles/c14le0p4310o come condemnation confirmed content context convene copyright criminals critical cyber cyberattacks cybercrime ddos decision denial deploying description developments disruptions distributed distribution emergency enablers engage enhance escalated especially explorer/articles/f85adcbc facilities financially following food forces from future geolocations geopolitical global goals gov/sites/default/files/2024 government grain groups growing guise hacker hackers hacktivist has hat have https://sip https://therecord https://www including industrial industries infrastructure intelligence international invasion issued its joint key known korea korean kremlin leading led like local many media/seoul meeting microsoft military monitor monitoring moscow motivated nation near noname057 north not noted observers office officials often osint other over overlap part pdf pentest permission predominantly presidential pro prohibited proxies pyongyang record recorded references report reportedly reproduction researchers reserved resource rights rise russia russian sectors security send seoul september service services since site snapshot soldiers south state stationed such support surge target targeted targeting targets that threat thereof these thousands threat troops ukraine ukrainian under warehouse websites which without written in security the warning |
| Tags | Threat Industrial |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.