Thallium – WindowsTechs.com

State-backed hackers are experimenting with OpenAI models

Posted on February 14, 2024 by eliasgroll

Microsoft and OpenAI say hackers from China, Iran, North Korea and Russia are exploring the use of large language models in their operations.

The post State-backed hackers are experimenting with OpenAI models appeared first on CyberScoop.

Continue reading State-backed hackers are experimenting with OpenAI models →

More suspected North Korean malware identified after US alert on Kimsuky hackers

Posted on November 2, 2020 by Joe Warminsky

Security researchers say they uncovered more tools associated with a North Korea-linked cyber-espionage group that was the subject of a U.S. government alert last week. The previously undocumented malware and server infrastructure appear to be the work of Kimsuky, an advanced persistent threat (APT) group, according to the researchers with Boston-based Cybereason. U.S. military and civilian agencies issued a joint warning about the APT on Oct. 27, saying the current threat was greatest for “commercial sector businesses,” although Kimsuky has often targeted government agencies, think tanks and other organizations connected to geopolitics. Organizations in the U.S., Europe, Japan, South Korea and Russia appear to be the targets, Cybereason says. Kimsuky also has a history of trying to gather intelligence about sanctions, nuclear policy and other issues salient to the Korean Peninsula. A U.N. Security Council report earlier this year said Kimsuky appeared to be behind hacking attempts against the international body. Kimsuky typically […]

The post More suspected North Korean malware identified after US alert on Kimsuky hackers appeared first on CyberScoop.

Continue reading More suspected North Korean malware identified after US alert on Kimsuky hackers→

Microsoft pwns domains used by hackers for large-scale cyber attacks

Posted on December 31, 2019 by Sudais

By Sudais
Microsoft has shown its true powers against a group of hackers. Here’s what happened…
This is a post from HackRead.com Read the original post: Microsoft pwns domains used by hackers for large-scale cyber attacks
Continue reading Microsoft pwns domains used by hackers for large-scale cyber attacks→

Microsoft seizes 50 websites used by North Korean hackers to gather intelligence

Posted on December 31, 2019 by Jeff Stone

Microsoft has taken hold of 50 websites used by suspected North Korean hackers to bolster attempted hacks against government employees, universities and nuclear organizations, among other targets. The company announced Monday it won a court order allowing it to take over 50 websites that a hacking group Microsoft refers to as Thallium (also known as APT37, or Reaper) has used as part of a campaign to steal sensitive data. Thallium would send phishing emails which directed would-be victims to malicious websites, where they would be prompted to enter their username and password. A successful effort would provide Thallium access to victimized account data including messages, contact lists and appointments. This effort marks the fourth time Microsoft has used U.S. courts to sink nation-state hacking infrastructure. In March, Microsoft said it took over domains used by Phosphorous, an Iranian group also known as Charming Kitten, and in August 2018 said it […]

The post Microsoft seizes 50 websites used by North Korean hackers to gather intelligence appeared first on CyberScoop.

Continue reading Microsoft seizes 50 websites used by North Korean hackers to gather intelligence→