Hot Topics

North Korea

North Korea IT worker scam

U.S. Seizes Money, Domains Involved In North Korea IT Worker Scam

| | Cybersecurity, IT worker, North Korea, scam
U.S. law enforcement agencies over the past year seized 17 web domains and almost $1.5 million as part of an ongoing effort to shut down a North Korean program to plant IT ...
Security Boulevard
North Korea IT worker scam

North Korean Attackers Penetrated Russian Rocket Designer’s Systems

| | cyberattack, Data breach, missile, North Korea, Russia
North Korean hackers not only breached a Russian missile maker, but resided in its systems for nearly six months ...
Security Boulevard
vulnerability curl patch

Lazarus Assault Via 3CX Exposes Need to Rethink Security

| | 3CX, Lazarus Group, North Korea, Software Security, supply chain attack, updates
When North Korean threat actors the Lazarus Group exploited a legitimate update to the 3CXDesktopApp—a softphone application from 3CX—security professionals didn’t initially pick up on the import of the activity and tactics ...
Security Boulevard
North Korea China's MSS Leveraging Students In, From U.S.

Mitigating the North Korean Cybersecurity Threat

| | cryptocurrency, Mark of the Web, North Korea, Windows
Cybersecurity firm Kaspersky recently published an analysis that detailed how a North Korean threat actor, which it called the BlueNoroff group, is stealing cryptocurrency by bypassing the “Mark of the Web” flag ...
Security Boulevard
Warning: N. Korean Job Scams Push Trojans via LinkedIn

Warning: N. Korean Job Scams Push Trojans via LinkedIn

| | APT38, DPRK, Job interviewers can learn from this, Kim Jong-un, Lazarus, Lazarus Group, linkedin, North Korea, SB Blogwatch, ZINC
Hey, hey, DPRK, how many people will you scam today? ...
Security Boulevard

Chrome Zero-Day from North Korea

| | Chrome, Hacking, North Korea, Uncategorized, zero-day
North Korean hackers have been exploiting a zero-day in Chrome. The flaw, tracked as CVE-2022-0609, was exploited by two separate North Korean hacking groups. Both groups deployed the same exploit kit on ...
Schneier on Security
Graphics Card Web Tracking, Fake Job Ad Scams, Hacker Takes Down North Korea's Internet

Graphics Card Web Tracking, Fake Job Ad Scams, Hacker Takes Down North Korea’s Internet

| | Cybersecurity, Digital Privacy, Episodes, FBI, GPU, Graphics Card, hacker, Information Security, Infosec, Internet, Job Postings, North Korea, Podcast, Privacy, scam, scammers, Scams, security, technology, web tracking, Weekly Edition
Researchers have discovered a new web tracking technique using your graphics card, scammers are exploiting security weaknesses on job recruitment websites to post fraudulent job postings, and how a hacker single-handedly took ...
The Shared Security Show
US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat)

US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat)

| | Denial of Service, don't annoy the wizards, DPRK, FUNK Project, North Korea, P4x, SB Blogwatch
An infosec researcher was hacked by North Korea. U.S. law enforcement did nothing, so he took matters into his own hands ...
Security Boulevard
cybercriminals China India UEFI

Cybercriminals: Frenemies China, Russia, North Korea

| | Chinese hackers, North Korea, RAMP forum, Ransomware, Russian hacking
The age-old adage that “Criminals crime” is proving true when it comes to the transnational cybercriminals at play. The cybercriminals associated with the forum RAMP (Russian) have reached out to China’s cybercriminals ...
Security Boulevard
cybersecurity executive order threats nation-state NAC

Nation-State Cyberthreats Persist

| | china, EO 13694, Iran, nation-state, North Korea, Russia, United States
We are often told how particular threats were the responsibility of a certain nation-state, and that there was difference between those nations and cybercriminals. While it made good copy, the cybersecurity domain ...
Security Boulevard
Load more