Lazarus – Page 5 – WindowsTechs.com

SnatchCrypto attack hits DeFi and Blockchain Platforms with backdoor

Posted on January 16, 2022 by Waqas

By Waqas
Kaspersky researchers believe that North Korean government-backed hackers from the Lazarus Group are behind the SnatchCrypto attack. The…
This is a post from HackRead.com Read the original post: SnatchCrypto attack hits DeFi and Blockcha… Continue reading SnatchCrypto attack hits DeFi and Blockchain Platforms with backdoor→

PseudoManuscrypt: a mass-scale spyware attack campaign

Posted on December 16, 2021 by Kaspersky ICS CERT

Kaspersky ICS CERT experts identified malware whose loader has some similarities to the Manuscrypt malware, which is part of the Lazarus APT group’s arsenal. Continue reading PseudoManuscrypt: a mass-scale spyware attack campaign→

APT trends report Q3 2021

Posted on October 26, 2021 by GReAT

The APT trends reports are based on our threat intelligence research and provide a representative snapshot of what we have discussed in greater detail in our private APT reports. This is our latest installment, focusing on activities that we observed during Q3 2021. Continue reading APT trends report Q3 2021→

Lazarus gang targets engineers with job offers using poisoned emails

Posted on July 8, 2021 by Graham Cluley

Security researchers report that a notorious North Korean hacking group has been targeting engineers working in the defence industry.

Read more in my article on the Tripwire State of Security blog. Continue reading Lazarus gang targets engineers with job offers using poisoned emails→

Andariel evolves to target South Korea with ransomware

Posted on June 15, 2021 by Seongsu Park

In April 2021, we observed a suspicious Word document with a Korean file name and decoy. It revealed a novel infection scheme and an unfamiliar payload. After a deep analysis, we came to a conclusion: the Andariel group was behind these attacks. Continue reading Andariel evolves to target South Korea with ransomware→

IT threat evolution Q1 2021

Posted on May 31, 2021 by David Emm

SolarWinds attacks, MS Exchange vulnerabilities, fake adblocker distributing miner, malware for Apple Silicon platform and other threats in Q1 2021. Continue reading IT threat evolution Q1 2021→

APT trends report Q1 2021

Posted on April 27, 2021 by GReAT

This report highlights significant events related to advanced persistent threat (APT) activity observed in Q1 2021. The summaries are based on our threat intelligence research and provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. Continue reading APT trends report Q1 2021→

Smashing Security podcast #224: The Lazarus Heist, Facebook faux pas, and no-cost security

Posted on April 22, 2021 by Graham Cluley

Facebook has managed to do the seemingly impossible – and had a data breach about its handling of a data breach. Meanwhile, we chat to the host of the brand new podcast about North Korea’s hackers targeting the rest of the world, and discuss if an inte… Continue reading Smashing Security podcast #224: The Lazarus Heist, Facebook faux pas, and no-cost security→

Lazarus targets defense industry with ThreatNeedle

Posted on February 25, 2021 by Vyacheslav Kopeytsev, Seongsu Park

In mid-2020, we realized that Lazarus was launching attacks on the defense industry using the ThreatNeedle cluster, an advanced malware cluster of Manuscrypt (a.k.a. NukeSped). While investigating this activity, we were able to observe the complete life cycle of an attack, uncovering more technical details and links to the group’s other campaigns. Continue reading Lazarus targets defense industry with ThreatNeedle→

US names three North Koreans in laundry list of cybercrime charges

Posted on February 18, 2021 by Naked Security writer

Trio alleged to have been at it for more than a decade, and to have made off with well over a billion dollars. Continue reading US names three North Koreans in laundry list of cybercrime charges→