Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-12-11 17:00:00 |
Le groupe Lazarus cible le défaut log4shell via des bots télégrammes Lazarus Group Targets Log4Shell Flaw Via Telegram Bots (lien direct) |
Cisco Talos a déclaré que le forgeron de l'opération a mis à profit la faille dans les serveurs VMware Horizon à la face publique
Cisco Talos said Operation Blacksmith leveraged the flaw in publicly facing VMWare Horizon servers |
|
APT 38
|
★★
|
|
2023-10-30 17:00:00 |
Lazarus Group malware cible le logiciel légitime Lazarus Group Malware Targets Legitimate Software (lien direct) |
Kaspersky a dévoilé la cyber campagne lors du sommet des analystes de sécurité
Kaspersky unveiled the cyber campaign at the Security Analyst Summit |
Malware
|
APT 38
|
★★
|
|
2023-09-14 09:30:00 |
Le groupe Lazare a été blâmé pour 53 millions de dollars à Coinex Lazarus Group Blamed For $53m Heist at CoinEx (lien direct) |
Les acteurs nord-coréens sont devenus des crypto-voleurs prolifiques
North Korean actors have become prolific crypto-thieves |
|
APT 38
APT 38
|
★★
|
|
2023-09-11 16:00:00 |
Le groupe Lazare cible les macOS dans l'assaut de la chaîne d'approvisionnement Lazarus Group Targets macOS in Supply Chain Assault (lien direct) |
ESET a expliqué l'impact de l'attaque de la chaîne d'approvisionnement traduit par une augmentation de 16,8% des détections de Troie
ESET explained the impact of the supply chain attack translated to a 16.8% increase in Trojan detections |
|
APT 38
APT 38
|
★★
|
|
2023-08-25 07:30:00 |
Le groupe Lazarus cible l'infrastructure Internet et les soins de santé avec le logiciel malveillant \\'QuiteRAT\\' Lazarus Group Targets Internet Infrastructure and Healthcare with \\'QuiteRAT\\' Malware (lien direct) |
QuiteRAT, le nouveau malware du groupe soutenu par la Corée du Nord, exploite une vulnérabilité ManageEngine ServiceDesk de 2022
QuiteRAT, the North-Korea-Backed group\'s new malware, exploits a 2022 ManageEngine ServiceDesk vulnerability |
Malware
Vulnerability
|
APT 38
APT 38
|
★★
|
|
2023-07-28 09:00:00 |
Les pirates nord-coréens mettent un autre 100 millions de dollars de crampons de crypto North Korean Hackers Bag Another $100m in Crypto Heists (lien direct) |
Deux nouvelles violations remontées au groupe prolifique de Lazare
Two new breaches traced back to prolific Lazarus group |
|
APT 38
APT 38
|
★★
|
|
2023-06-28 15:30:00 |
Les erreurs d'Andariel \\ découvrent de nouveaux logiciels malveillants dans la campagne du groupe Lazare Andariel\\'s Mistakes Uncover New Malware in Lazarus Group Campaign (lien direct) |
Kaspersky analyse les tactiques du groupe et révèle l'émergence d'une nouvelle menace appelée EarlyRat
Kaspersky analyzes the group\'s tactics and reveals the emergence of a new threat called EarlyRat |
Threat
Malware
|
APT 38
|
★★★
|
|
2023-06-08 09:00:00 |
Le groupe Lazare blâmé pour le braquage du portefeuille atomique Lazarus Group Blamed for Atomic Wallet Heist (lien direct) |
Un groupe nord-coréen notoire armé pour une campagne récente
Notorious North Korean group pegged for recent campaign |
|
APT 38
|
★★
|
|
2023-05-24 15:00:00 |
Groupe Lazare ciblant les serveurs Web Microsoft pour lancer des logiciels malveillants d'espionnage Lazarus Group Targeting Microsoft Web Servers to Launch Espionage Malware (lien direct) |
Les chercheurs détaillent la technique de chargement latéral DLL utilisé pour déployer des logiciels malveillants qui facilitent le vol d'identification et le mouvement latéral
Researchers detail the DLL side-loading technique used to deploy malware that facilitates credential theft and lateral movement |
Malware
|
APT 38
|
★★
|
|
2023-04-12 16:00:00 |
La campagne Deathnote de Lazarus Group \\ révèle un changement dans les cibles Lazarus Group\\'s DeathNote Campaign Reveals Shift in Targets (lien direct) |
Kaspersky a découvert un changement dans les cibles de l'attaque et les vecteurs d'infection mis à jour en 2020
Kaspersky uncovered a shift in the attack\'s targets and updated infection vectors in 2020 |
|
APT 38
|
★★
|
|
2023-03-08 17:00:00 |
Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw (lien direct) |
Asec recorded attacks in May and October 2022 |
|
APT 38
|
★★
|
|
2023-02-23 18:00:00 |
WinorDLL64 Backdoor Linked to Lazarus Group (lien direct) |
The Wslink loader can reportedly serve other connecting clients and load additional payloads |
|
APT 38
|
★★★
|
|
2023-02-02 16:00:00 |
Lazarus Group Attack Identified After Operational Security Fail (lien direct) |
The new campaign highlighted several "noteworthy developments" in TTPs |
|
APT 38
|
★★★★
|
|
2023-01-24 17:00:00 |
FBI Confirms Lazarus Group Was Behind $100m Harmony Hack (lien direct) |
The North Korean cyber actors laundered over $60m worth of Ethereum stolen during the heist |
Hack
|
APT 38
|
★★★
|
|
2022-11-15 16:00:00 |
Lazarus Backdoor DTrack Evolves to Target Europe and Latin America (lien direct) |
DTrack has not changed substantially, but Lazarus made some “interesting” modifications |
|
APT 38
|
★★★★★
|
|
2022-10-03 15:00:00 |
Lazarus Group Exploits Dell Driver Vulnerability to Bypass Windows Security (lien direct) |
ESET said the vulnerability was exploited at least twice via a specific user-mode module |
Vulnerability
|
APT 38
|
|
|
2022-09-30 15:00:00 |
Lazarus-Associated Hackers Weaponize Open-Source Tools Against Several Countries (lien direct) |
The advisory suggests Zinc has targeted media, defense and aerospace, and IT services |
Medical
|
APT 38
|
|
|
2022-09-27 16:00:00 |
Lazarus Group Targets MacOS Users Seeking Crypto Jobs (lien direct) |
The new attacks would be a new instance of a campaign spotted by ESET and Malwarebytes in August |
|
APT 38
|
|
|
2022-09-12 08:30:00 |
North Korean Lazarus Group Hacked Energy Providers Worldwide (lien direct) |
The campaign was disclosed by Symantec and AhnLab but Cisco Talos is now providing more details |
|
APT 38
|
|
|
2022-08-09 15:10:00 |
US Treasury Sanctions Virtual Currency Mixer For Connections With Lazarus Group (lien direct) |
Tornado Cash would have been used to launder more than $7b in virtual currency since its foundation |
|
APT 38
|
|
|
2022-07-08 16:00:00 |
Spear Phishing Fake Job Offer Likely Behind Axie Infinity\'s Lazarus $600m Hack (lien direct) |
The message with the fake offer contained a PDF that would have delivered spyware |
Hack
|
APT 38
|
|
|
2022-06-30 16:00:00 |
North Korea\'s Lazarus Group Suspected of $100m Harmony Hack (lien direct) |
Elliptic used Tornado demixing techniques to trace the stolen funds to new Ethereum wallets |
Hack
|
APT 38
|
|
|
2022-04-20 15:30:00 |
US Government: North Korean Threat Actors Are Targeting Cryptocurrency Organizations (lien direct) |
Joint advisory reveals Lazarus APT is targeting cryptocurrency organizations using trojanized applications |
Threat
|
APT 38
APT 28
|
|
|
2022-04-19 09:00:00 |
Ronin Crypto Heist of $618m Traced to North Korea (lien direct) |
Lazarus Group blamed by US Treasury |
Medical
|
APT 38
APT 28
|
|
|
2021-10-27 09:30:00 |
North Korean Lazarus APT Targets Software Supply Chain (lien direct) |
Prolific threat group take a leaf out of the SolarWinds campaign |
Threat
|
APT 38
APT 28
|
★★★★
|
|
2021-02-18 11:10:00 |
(Déjà vu) Two More Lazarus Group Members Indicted for North Korean Attacks (lien direct) |
Sony Pictures, WannaCry and string of heists blamed on agents |
|
Wannacry
Wannacry
APT 38
APT 28
|
★★★
|
|
2020-12-23 18:14:00 |
Lazarus Attacks Vaccine Research (lien direct) |
APT group Lazarus attacks two targets related to COVID-19 vaccine research |
|
APT 38
APT 28
|
|