LAZARUS APT Using TraderTraitor Malware to Target Blockchain Orgs, Users

By Deeba Ahmed
Lazarus APT group is backed by the North Korean government and is currently targeting organizations and unsuspecting users…
This is a post from HackRead.com Read the original post: LAZARUS APT Using TraderTraitor Malware to Target … Continue reading LAZARUS APT Using TraderTraitor Malware to Target Blockchain Orgs, Users

Lazarus Trojanized DeFi app for delivering malware

We recently discovered a Trojanized DeFi application that was compiled in November 2021. This application contains a legitimate program called DeFi Wallet that saves and manages a cryptocurrency wallet, but also implants a full-featured backdoor. Continue reading Lazarus Trojanized DeFi app for delivering malware

SnatchCrypto attack hits DeFi and Blockchain Platforms with backdoor

By Waqas
Kaspersky researchers believe that North Korean government-backed hackers from the Lazarus Group are behind the SnatchCrypto attack. The…
This is a post from HackRead.com Read the original post: SnatchCrypto attack hits DeFi and Blockcha… Continue reading SnatchCrypto attack hits DeFi and Blockchain Platforms with backdoor

PseudoManuscrypt: a mass-scale spyware attack campaign

Kaspersky ICS CERT experts identified malware whose loader has some similarities to the Manuscrypt malware, which is part of the Lazarus APT group’s arsenal. Continue reading PseudoManuscrypt: a mass-scale spyware attack campaign

APT trends report Q3 2021

The APT trends reports are based on our threat intelligence research and provide a representative snapshot of what we have discussed in greater detail in our private APT reports. This is our latest installment, focusing on activities that we observed during Q3 2021. Continue reading APT trends report Q3 2021

Andariel evolves to target South Korea with ransomware

In April 2021, we observed a suspicious Word document with a Korean file name and decoy. It revealed a novel infection scheme and an unfamiliar payload. After a deep analysis, we came to a conclusion: the Andariel group was behind these attacks. Continue reading Andariel evolves to target South Korea with ransomware

IT threat evolution Q1 2021

SolarWinds attacks, MS Exchange vulnerabilities, fake adblocker distributing miner, malware for Apple Silicon platform and other threats in Q1 2021. Continue reading IT threat evolution Q1 2021

APT trends report Q1 2021

This report highlights significant events related to advanced persistent threat (APT) activity observed in Q1 2021. The summaries are based on our threat intelligence research and provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. Continue reading APT trends report Q1 2021

Smashing Security podcast #224: The Lazarus Heist, Facebook faux pas, and no-cost security

Facebook has managed to do the seemingly impossible – and had a data breach about its handling of a data breach. Meanwhile, we chat to the host of the brand new podcast about North Korea’s hackers targeting the rest of the world, and discuss if an inte… Continue reading Smashing Security podcast #224: The Lazarus Heist, Facebook faux pas, and no-cost security