SEC News

What's new arround internet

Last one

Src	Date (GMT)	Titre	Description	Tags	Stories	Notes
	2022-08-17 15:07:53	APT Lazarus Targets Engineers with macOS Malware (lien direct)	The North Korean APT is using a fake job posting for Coinbase in a cyberespionage campaign targeting users of both Apple and Intel-based systems.	Malware	APT 38
	2022-05-05 12:20:10	VHD Ransomware Linked to North Korea\'s Lazarus Group (lien direct)	Source code and Bitcoin transactions point to the malware, which emerged in March 2020, being the work of APT38, researchers at Trellix said.	Ransomware Medical	APT 38 APT 28
	2022-01-28 21:47:21	Lazarus APT Uses Windows Update to Spew Malware (lien direct)	The group once again dangled fake job opportunities at engineers in a spear-phishing campaign that used Windows Update as a living-off-the-land technique and GitHub as a C2.	Malware	APT 38
	2021-12-16 18:36:40	\'PseudoManuscrypt\' Mass Spyware Campaign Targets 35K Systems (lien direct)	It's similar to Lazarus's Manuscrypt malware, but the new spyware is splattering itself onto government organizations and ICS in a non-Lazarus-like, untargeted wave of attacks.		APT 38
	2021-10-26 19:30:37	Lazarus Attackers Turn to the IT Supply Chain (lien direct)	Kaspersky researchers saw The North Korean state APT use a new variant of the BlindingCan RAT to breach a Latvian IT vendor and then a South Korean think tank.		APT 38
	2021-07-09 10:50:37	Lazarus Targets Job-Seeking Engineers with Malicious Documents (lien direct)	Notorious North Korean APT impersonates Airbus, General Motors and Rheinmetall to lure potential victims into downloading malware.		APT 38
	2021-06-10 21:54:21	\'Fancy Lazarus\' Cyberattackers Ramp up Ransom DDoS Efforts (lien direct)	The group, known for masquerading as various APT groups, is back with a spate of attacks on U.S. companies.		APT 38
	2021-02-26 19:56:39	Lazarus Targets Defense Companies with ThreatNeedle Malware (lien direct)	A spear-phishing campaigned linked to a North Korean APT uses “NukeSped” malware in cyberespionage attacks against defense companies.	Malware	APT 38
	2021-02-17 18:20:28	(Déjà vu) U.S. Accuses North Korean Hackers of Stealing Millions (lien direct)	The feds have expanded the list of financial and political hacking crimes they allege are linked to Lazarus Group and North Korea.	Medical	APT 38 APT 28
	2021-01-29 13:29:10	Lazarus Affiliate \'ZINC\' Blamed for Campaign Against Security Researcher (lien direct)	New details emerge of how North Korean-linked APT won trust of experts and exploited Visual Studio to infect systems with 'Comebacker' malware.		APT 38
	2020-12-23 19:02:30	Lazarus Group Hits COVID-19 Vaccine-Maker in Espionage Attack (lien direct)	The nation-state actor is looking to speed up vaccine development efforts in North Korea.		APT 38
	2020-11-16 18:23:36	Hacked Security Software Used in Novel South Korean Supply-Chain Attack (lien direct)	Lazarus Group is believed to be behind a spate of attacks that leverage stolen digital certificates tied to browser software that secures communication with government and financial websites in South Korea.	Medical	APT 38
	2019-04-12 14:58:05	North Korea\'s Hidden Cobra Strikes U.S. Targets with HOPLIGHT (lien direct)	The custom malware is a spy tool and can also disrupt processes at U.S. assets.	Malware Tool	APT 38
	2019-03-28 16:12:00	Lazarus Group Widens Tactics in Cryptocurrency Attacks (lien direct)	MacOS users, as well as Windows, are in the cross-hairs, especially those based in South Korea.		APT 38
	2018-09-06 23:00:05	U.S. Ties Lazarus to North Korea and Major Hacking Conspiracy (lien direct)	The DoJ said a DPRK spy, Park Jin-hyok, was involved in “a conspiracy to conduct multiple destructive cyberattacks around the world."		APT 38
	2018-05-30 14:59:01	Hidden Cobra Strikes Again with Custom RAT, SMB Malware (lien direct)	The North Korean-sponsored actors are targeting sensitive and proprietary information, and the malware could disrupt regular operations and disable systems and files.		APT 38
	2018-04-27 15:58:03	ThaiCERT Seizes Hidden Cobra Server Linked to GhostSecret, Sony Attacks (lien direct)	It's analyzing the server, operated by the North Korea-sponsored APT, which was used to control the global GhostSecret espionage campaign affecting 17 countries.		APT 38
	2017-06-16 16:00:31	Threatpost News Wrap, June 16, 2017 (lien direct)	Mike Mimoso and Chris Brook discuss the news of the week, including Microsoft's XP patches, Hidden Cobra, a Nigerian BEC campaign, MacRansom, and more.	Medical	APT 38
	2017-06-14 17:17:21	DHS, FBI Warn of North Korea \'Hidden Cobra\' Strikes Against US Assets (lien direct)	DHS and the FBI warned that North Korean attackers are targeting U.S. businesses with malware- and botnet-related attacks that are part of concerted effort dubbed "Hidden Cobra."	Medical	APT 38
	2017-05-19 13:00:19	Threatpost News Wrap, May 19, 2017 (lien direct)	Mike Mimoso and Chris Brook discuss WannaCry, Microsoft's response, the killswitches, a potential link with Lazarus Group, and what the future holds for the ShadowBrokers.	Medical	Wannacry APT 38
	2017-05-16 15:45:50	WannaCry Shares Code with Lazarus APT Samples (lien direct)	Experts have confirmed there are similarities between code used by the ransomware WannaCry and the Lazarus APT.		Wannacry APT 38
	2017-04-03 22:53:52	Security Analyst Summit 2017 Day One Recap (lien direct)	Mike Mimoso and Chris Brook recap the first day of this year's Security Analyst Summit, including Mark Dowd's memory corruption bug keynote, the digital archeology around Moonlight Maze, ATM hacking, and the Lazarus APT.		APT 38
	2017-04-03 20:38:44	Lazarus APT Spinoff Linked to Banking Hacks (lien direct)	The Lazarus Group has splintered off a group whose mission is to attack banks and steal money in order to fund its operations.	Medical	APT 38

Last update at: 2024-05-09 11:07:58
See our sources.

To see everything: Our RSS (filtrered)