Archive for the ‘North Korean hackers’ Category

North Korean Hackers Using ELECTRICFISH Tunnels to Exfiltrate Data

May 10th, 2019
The U.S. Department of Homeland Security (DHS) and the FBI have issued another joint alert about a new piece of malware that the prolific North Korean APT hacking group Hidden Cobra has actively been using in the wild. Hidden Cobra, also known as Lazarus Group and Guardians of Peace, is believed to be backed by North Korean government and known to launch cyber attacks against media

Posted in Cyber Attack, data exfiltration, hacking news, North Korea, North Korean hackers, proxy tool | Comments (0)

Researchers Link ‘Sharpshooter’ Cyber Attacks to North Korean Hackers

March 4th, 2019
Security researchers have finally, with "high confidence," linked a previously discovered global cyber espionage campaign targeting critical infrastructure around the world to a North Korean APT hacking group. Thanks to the new evidence collected by researchers after analyzing a command-and-control (C2) server involved in the espionage campaign and seized by law enforcement. Dubbed Operation

Posted in Cyber Attack, cyber espionage, Lazarus Group, malware, North Korea, North Korean hackers, South Korea | Comments (0)

FBI Mapping ‘Joanap Malware’ Victims to Disrupt the North Korean Botnet

January 31st, 2019
The United States Department of Justice (DoJ) announced Wednesday its effort to "map and further disrupt" a botnet tied to North Korea that has infected numerous Microsoft Windows computers across the globe over the last decade. Dubbed Joanap, the botnet is believed to be part of "Hidden Cobra"—an Advanced Persistent Threat (APT) actors' group often known as Lazarus Group and Guardians of

Posted in Botnet, Brambul malware, Cyber Attack, FBI, Hidden Cobra Hackers, Joanap botnet, Lazarus Group, malware, North Korea, North Korean hackers | Comments (0)