What's new arround internet
Last one

Src Date (GMT) Titre Description Tags Stories Notes
DarkReading.webp 2025-04-01 13:21:21 Lazarus apt saute dans le train de Clickfix dans les attaques récentes
Lazarus APT Jumps on ClickFix Bandwagon in Recent Attacks (lien direct)		 Une continuation de la campagne nord-coréenne de l'État-nation \\ contre les demandeurs d'emploi utilise l'attaque d'ingénierie sociale pour cibler les organisations CEFI avec la porte dérobée de Golangghost.
A continuation of the North Korean nation-state threat\'s campaign against employment seekers uses the social engineering attack to target CeFi organizations with the GolangGhost backdoor.		 Threat APT 38 ★★
DarkReading.webp 2025-02-25 10:16:39 La Lazarus de la Corée du Nord réalise le plus grand braquage cryptographique de l'histoire
North Korea\\'s Lazarus Pulls Off Biggest Crypto Heist in History (lien direct)		 Les cyberattaques qui seraient affiliés au groupe de menaces parrainé par l'État ont réussi le plus grand braquage cryptographique signalé à ce jour, volant 1,5 milliard de dollars de borbit de bourse. Il a été réalisé en interférant avec un transfert de routine entre les portefeuilles.
Cyberattackers believed to be affiliated with the state-sponsored threat group pulled off the largest crypto heist reported to date, stealing $1.5 billion from exchange Bybit. It was carried out by interfering with a routine transfer between wallets.		 Threat APT 38 ★★★★
DarkReading.webp 2025-01-29 21:39:00 Researchers Uncover Lazarus Group Admin Layer for C2 Servers (lien direct) The threat actor is using a sophisticated network of VPNs and proxies to centrally manage command and control servers from Pyongyang.
The threat actor is using a sophisticated network of VPNs and proxies to centrally manage command and control servers from Pyongyang.		 Threat APT 38 ★★★
DarkReading.webp 2025-01-15 16:02:08 North Korea\\'s Lazarus APT Evolves Developer-Recruitment Attacks (lien direct) "Operation 99" uses job postings to lure freelance software developers into downloading malicious Git repositories. From there, malware infiltrates developer projects to steal source code, secrets, and cryptocurrency.
"Operation 99" uses job postings to lure freelance software developers into downloading malicious Git repositories. From there, malware infiltrates developer projects to steal source code, secrets, and cryptocurrency.		 Malware APT 38 ★★
DarkReading.webp 2024-10-23 20:55:13 Le groupe Lazarus exploite Chrome Zero-Day dans la dernière campagne
Lazarus Group Exploits Chrome Zero-Day in Latest Campaign (lien direct)		 L'acteur nord-coréen va après les investisseurs de crypto-monnaie dans le monde entier en tirant parti d'un site de jeu d'aspect authentique et d'un contenu et d'images générés par l'IA.
The North Korean actor is going after cryptocurrency investors worldwide leveraging a genuine-looking game site and AI-generated content and images.		 Vulnerability Threat APT 38 ★★
DarkReading.webp 2024-04-24 16:27:13 La Corée du Nord, le triumvirat apte espionné de l'industrie sud-coréenne de la défense pendant des années
North Korea APT Triumvirate Spied on South Korean Defense Industry For Years (lien direct)		 Lazarus, Kimsuky et Andariel ont tous pris l'action, volant des données "importantes" aux entreprises responsables de la défense de leurs voisins du Sud (d'eux).
Lazarus, Kimsuky, and Andariel all got in on the action, stealing "important" data from firms responsible for defending their southern neighbors (from them).		 APT 38 ★★
DarkReading.webp 2024-03-01 00:17:13 Microsoft Zero Day utilisé par Lazarus dans Rootkit Attack
Microsoft Zero Day Used by Lazarus in Rootkit Attack (lien direct)		 Les acteurs de l'État nord-coréen Lazarus Group ont utilisé une journée Zero Applocker Windows, ainsi qu'un nouveau Rootkit amélioré, dans une cyberattaque récente, rapportent les chercheurs.
North Korean state actors Lazarus Group used a Windows AppLocker zero day, along with a new and improved rootkit, in a recent cyberattack, researchers report.		 Threat APT 38 ★★★
DarkReading.webp 2023-12-11 16:15:00 Le groupe Lazarus est toujours à la main Log4Shell, en utilisant des rats écrits en \\ 'd \\'
Lazarus Group Is Still Juicing Log4Shell, Using RATs Written in \\'D\\' (lien direct)		 La tristement célèbre vulnérabilité peut être de l'ancien côté à ce stade, mais Primo apt Lazarus de la Corée du Nord crée de nouveaux logiciels malveillants uniques autour de lui à un clip remarquable.
The infamous vulnerability may be on the older side at this point, but North Korea\'s primo APT Lazarus is creating new, unique malware around it at a remarkable clip.		 Malware Vulnerability APT 38 ★★
DarkReading.webp 2023-11-30 17:35:00 Feds saisit \\ 'Sinbad \\' Mélangeur cryptographique utilisé par la Corée du Nord \\'s Lazarus
Feds Seize \\'Sinbad\\' Crypto Mixer Used by North Korea\\'s Lazarus (lien direct)		 L'acteur de menace prolifique a blanchi des centaines de millions de dollars en monnaie virtuelle volée par le biais du service.
The prolific threat actor has laundered hundreds of millions of dollars in stolen virtual currency through the service.		 Threat APT 38 APT 38 ★★
DarkReading.webp 2023-11-28 17:30:00 Macos malware mix & match: les apts nord-coréens suscitent des attaques fraîches
macOS Malware Mix & Match: North Korean APTs Stir Up Fresh Attacks (lien direct)		 Lazare et ses cohortes changent de chargement et d'autres code entre Rustbucket et Kandykorn MacOS malware pour tromper les victimes et les chercheurs.
Lazarus and its cohorts are switching loaders and other code between RustBucket and KandyKorn macOS malware to fool victims and researchers.		 Malware APT 38 APT 38 ★★
DarkReading.webp 2023-11-03 18:55:00 \\ 'kandykorn \\' macos malware attire les ingénieurs cryptographiques
\\'KandyKorn\\' macOS Malware Lures Crypto Engineers (lien direct)		 Se faisant passer pour ses collègues ingénieurs, le groupe de cybercrimes parrainé par l'État nord-coréen Lazare a trompé les développeurs de crypto-échanges pour télécharger le malware difficile à détecter.
Posing as fellow engineers, the North Korean state-sponsored cybercrime group Lazarus tricked crypto-exchange developers into downloading the hard-to-detect malware.		 Malware APT 38 APT 38 ★★
DarkReading.webp 2023-10-02 20:51:09 La Corée du Nord fait passer la méta pour déployer une porte dérobée complexe chez Aerospace Org
North Korea Poses as Meta to Deploy Complex Backdoor at Aerospace Org (lien direct)		 Le logiciel malveillant "LightlessCan" du groupe Lazarus \\ exécute plusieurs commandes Windows natives dans le rat lui-même, ce qui rend la détection beaucoup plus difficile, dit le fournisseur de sécurité.
The Lazarus Group\'s "LightlessCan" malware executes multiple native Windows commands within the RAT itself, making detection significantly harder, security vendor says.		 Malware APT 38 ★★★
DarkReading.webp 2023-08-24 12:05:00 Le groupe de Lazarus de la Corée du Nord a utilisé le cadre d'interface graphique pour construire un rat furtif
North Korea\\'s Lazarus Group Used GUI Framework to Build Stealthy RAT (lien direct)		 L'acteur de menace le plus notoire du monde utilise une tactique sans précédent pour fausser les logiciels espions dans les réseaux informatiques des entreprises importantes.
The world\'s most notorious threat actor is using an unprecedented tactic for sneaking spyware into the IT networks of important companies.		 Threat APT 38 APT 38 ★★
DarkReading.webp 2023-08-23 19:00:00 Le FBI met en garde contre les caves de crypto-monnaie par le groupe de Lazarus de la Corée du Nord
FBI Warns of Cryptocurrency Heists by North Korea\\'s Lazarus Group (lien direct)		 Le Bitcoin volé le plus récent survient juste après que trois opérations majeures se sont produites en juin, avec des millions volés à chaque casse.
The most recent stolen bitcoin comes just after three major operations occurred in June, with millions stolen in each heist.		 APT 38 APT 38 ★★
DarkReading.webp 2023-05-25 21:18:00 Groupe Lazarus frappant des serveurs Web vulnérables IIS IIS
Lazarus Group Striking Vulnerable Windows IIS Web Servers (lien direct)		 Le tristement célèbre groupe nord-coréen APT utilise Log4Shell, l'attaque de la chaîne d'approvisionnement 3CX et d'autres vecteurs connus pour briser les serveurs Web Microsoft.
The infamous North Korean APT group is using Log4Shell, the 3CX supply chain attack, and other known vectors to breach Microsoft Web servers.		 APT 38 ★★
DarkReading.webp 2023-04-27 19:50:44 Lazare, Scarcruft nord-coréen Apts Shift Tactics, prospère
Lazarus, Scarcruft North Korean APTs Shift Tactics, Thrive (lien direct)		 Alors que les acteurs de la menace du monde entier grandissent et évoluent, les aptes de la RPDC se distinguent par leur propagation et leur variété de cibles.
As threat actors around the world grow and evolve, APTs from the DPRK stand out for their spread and variety of targets.		 Threat APT 38 APT 37 ★★
DarkReading.webp 2023-04-12 21:41:00 Lazarus Group \\ 'S \\' Deathnote \\ 'Cluster Pivots to Defense secteur
Lazarus Group\\'s \\'DeathNote\\' Cluster Pivots to Defense Sector (lien direct)		 Habituellement axé sur les organisations de crypto-monnaie, l'acteur de menace a commencé à cibler les entreprises de défense dans le monde.
Usually focused on going after cryptocurrency organizations, the threat actor has begun targeting defense companies around the world.		 Threat APT 38 ★★
DarkReading.webp 2023-04-03 21:12:07 La violation de 3CX s'élargit à mesure que les cyberattaquiers baissent la porte dérobée de deuxième étape
3CX Breach Widens as Cyberattackers Drop Second-Stage Backdoor (lien direct)		 "Gopuram" est une porte dérobée que le groupe de Lazarus de la Corée du Nord a utilisée dans certaines campagnes datant de 2020, selon certains chercheurs.
"Gopuram" is a backdoor that North Korea\'s Lazarus Group has used in some campaigns dating back to 2020, some researchers say.		 General Information APT 38 ★★
DarkReading.webp 2023-02-07 21:05:00 DPRK Using Unpatched Zimbra Devices to Spy on Researchers (lien direct) Lazarus Group used a known Zimbra bug to steal data from medical and energy researchers. Medical Medical APT 38 ★★★
DarkReading.webp 2023-02-02 09:00:00 Lazarus Group Rises Again, to Gather Intelligence on Energy, Healthcare Firms (lien direct) An OpSec slip from the North Korean threat group helps researchers attribute what was first suspected as a ransomware attack to nation-state espionage. Ransomware Threat APT 38 ★★
DarkReading.webp 2022-09-27 21:40:00 Lazarus Lures Aspiring Crypto Pros With Fake Exchange Job Postings (lien direct) Previously observed using fake Coinbase jobs, the North Korea-sponsored APT has expanded into using Crypo.com gigs as cover to distribute malware. APT 38
DarkReading.webp 2022-08-18 18:23:04 Mac Attack: North Korea\'s Lazarus APT Targets Apple\'s M1 Chip (lien direct) Lazarus continues to expand an aggressive, ongoing spy campaign, using fake Coinbase job openings to lure in victims. APT 38
DarkReading.webp 2020-07-22 15:55:00 North Korea\'s Lazarus Group Developing Cross-Platform Malware Framework (lien direct) The APT group, known for its attack on Sony Pictures in 2014, has created an "advanced malware framework" that can launch and manage attacks against systems running Windows, MacOS, and Linux. Malware APT 38
DarkReading.webp 2020-05-12 16:30:00 DHS, FBI & DoD Report on New North Korean Malware (lien direct) Three new reports detail malware coming out of the Hidden Cobra cyber operations in North Korea. Malware Medical APT 38
DarkReading.webp 2019-09-13 15:00:00 US Sanctions 3 Cyber Attack Groups Tied to DPRK (lien direct) Lazarus Group, Bluenoroff, and Andariel were named and sanctioned by the US Treasury for ongoing attacks on financial systems. Medical APT 38
DarkReading.webp 2019-03-05 14:15:00 Lazarus Research Highlights Threat from North Korea (lien direct) A widespread attack against companies and government agencies have been linked to the North Korean Lazarus group, underscoring that the countries hackers are becoming more brazen. Threat Medical APT 38
DarkReading.webp 2018-11-08 17:45:00 Symantec Uncovers North Korean Group\'s ATM Attack Malware (lien direct) Lazarus Group has been using FastCash Trojan on obsolete AIX servers to empty tens of millions of dollars from ATMs. Malware Medical APT 38
DarkReading.webp 2018-08-23 15:07:00 Lazarus Group Builds its First MacOS Malware (lien direct) This isn't the first time Lazarus Group has infiltrated a cryptocurrency exchange as the hacking team has found new ways to achieve financial gain. Malware Medical APT 38
DarkReading.webp 2018-06-25 18:30:00 Malware in South Korean Cyberattacks Linked to Bithumb Heist (lien direct) Lazarus Group is likely behind a spearphishing campaign containing malicious code to download Manuscrypt malware. Malware Medical Bithumb Bithumb APT 38
DarkReading.webp 2017-11-20 13:40:00 North Korea\'s Lazarus Group Evolves Tactics, Goes Mobile (lien direct) The group believed to be behind the Sony breach and attacks on the SWIFT network pivots from targeted to mass attacks. APT 38
DarkReading.webp 2017-04-05 14:15:00 Matching Wits with a North Korea-Linked Hacking Group (lien direct) Skilled 'Bluenoroff' arm of infamous Lazarus hacking team behind Bangladesh Bank heist and Sony attacks actively resists investigators on its trail, Kaspersky Lab says. APT 38
DarkReading.webp 2017-03-17 14:10:00 North Korea\'s \'Lazarus\' Likely Behind New Wave of Cyberattacks (lien direct) Symantec says it has digital evidence that hack group Lazarus is behind the recent sophisticated cyberattacks on 31 countries. APT 38
Last update at: 2025-05-10 14:07:21
See our sources.
My email:

To see everything: Our RSS (filtrered) Twitter