Search cyberveille.decio.ch

Found 8 bookmarks

Custom sorting

North Korea’s Post-Infection Python Payloads – One Night in Norfolk

Throughout the past few months, several publications have written about a North Korean threat actor group’s use of NPM packages to deploy malware to developers and other unsuspecting victims. This blog post provides additional details regarding the second and third-stage malware in these attacks, which these publications have only covered in limited detail.

#norfolkinfosec #EN #2024 #NPM #packages #Phlyum #malware #North-Korea #phyton #payloads

·norfolkinfosec.com·Apr 4, 2024

North Korea’s Post-Infection Python Payloads – One Night in Norfolk

N. Korean Hackers 'Mixing' macOS Malware Tactics to Evade Detection

The North Korean threat actors behind macOS malware strains such as RustBucket and KANDYKORN have been observed "mixing and matching" different elements of the two disparate attack chains, leveraging RustBucket droppers to deliver KANDYKORN.

#thehackernews #EN #2023 #North-Korea #macOS #malware #KANDYKORN

·thehackernews.com·Dec 2, 2023

N. Korean Hackers 'Mixing' macOS Malware Tactics to Evade Detection

Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors

Two ongoing campaigns bear hallmarks of North Korean state-sponsored threat actors, posing in job-seeking roles to distribute malware or conduct espionage.

#unit42 #EN #2023 #North-Korea #Job-Related #Campaigns #threat-actor #job-seeking #malware #espionage

·unit42.paloaltonetworks.com·Nov 22, 2023

Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors

Lazarus hackers abuse Dell driver bug using new FudModule rootkit

The notorious North Korean hacking group 'Lazarus' was seen installing a Windows rootkit that abuses a Dell hardware driver in a Bring Your Own Vulnerable Driver attack.

#bleepingcomputer #EN #2022 #CVE-2021-21551 #BYOVD #Dell #Driver #Lazarus-Group #Malware #North-Korea #Rootkit

·bleepingcomputer.com·Oct 2, 2022

Lazarus hackers abuse Dell driver bug using new FudModule rootkit

North Korean hackers use signed macOS malware to target IT job seekers

North Korean hackers from the Lazarus group have been using a signed malicious executable for macOS to impersonate Coinbase and lure in employees in the financial technology sector.

#bleepingcomputer #EN #2022 #Coinbase #CryptoCurrency #Lazarus-Group #North-Korea #macOS #malware

·bleepingcomputer.com·Aug 18, 2022

North Korean hackers use signed macOS malware to target IT job seekers

Lazarus hackers abuse Dell driver bug using new FudModule rootkit

The notorious North Korean hacking group 'Lazarus' was seen installing a Windows rootkit that abuses a Dell hardware driver in a Bring Your Own Vulnerable Driver attack.

#bleepingcomputer #EN #2022 #CVE-2021-21551 #BYOVD #Dell #Driver #Lazarus-Group #Malware #North-Korea #Rootkit

·bleepingcomputer.com·Oct 2, 2022

Lazarus hackers abuse Dell driver bug using new FudModule rootkit

North Korean hackers use signed macOS malware to target IT job seekers

North Korean hackers from the Lazarus group have been using a signed malicious executable for macOS to impersonate Coinbase and lure in employees in the financial technology sector.

#bleepingcomputer #EN #2022 #Coinbase #CryptoCurrency #Lazarus-Group #North-Korea #macOS #malware

·bleepingcomputer.com·Aug 18, 2022

North Korean hackers use signed macOS malware to target IT job seekers

North Korean hackers from the Lazarus group have been using a signed malicious executable for macOS to impersonate Coinbase and lure in employees in the financial technology sector.

#bleepingcomputer #EN #2022 #Coinbase #CryptoCurrency #Lazarus-Group #North-Korea #macOS #malware

·bleepingcomputer.com·Aug 18, 2022

North Korean hackers use signed macOS malware to target IT job seekers