North Korea Archives • Page 3 of 4 • Daily CyberSecurity

ScarCruft APT Deploys VCD Ransomware, Uses PubNub & New Malware in Espionage Campaign North Korea APT, PubNub Abuse

ScarCruft APT Deploys VCD Ransomware, Uses PubNub & New Malware in Espionage Campaign

Do Son August 11, 2025

S2W’s Threat Analysis and Intelligence Center (TALON) has uncovered a sophisticated malware campaign attributed to the North...

Beavertail Malware Returns: North Korean Hackers Use NPM Packages to Steal Crypto & Secrets North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Beavertail Malware Returns: North Korean Hackers Use NPM Packages to Steal Crypto & Secrets

Do Son August 5, 2025

Veracode Threat Research has released an update on an ongoing North Korean cyber-espionage campaign that is actively...

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads Kimsuky APT, Cyberespionage

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads

Do Son August 5, 2025

A new report from Aryaka Threat Research Labs has disclosured one of the most technically sophisticated and...

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage ShadowSyndicate, Ransomware-as-a-Service

ShadowSyndicate, Ransomware-as-a-Service

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage

Do Son August 4, 2025

In a recent investigation, cybersecurity firm Intrinsec has illuminated the sprawling infrastructure of ShadowSyndicate, a clandestine threat...

The Ultimate Insider Threat: How North Korean IT Workers Infiltrated the Global Remote Economy North Korea Espionage, Disguised IT Workers

The Ultimate Insider Threat: How North Korean IT Workers Infiltrated the Global Remote Economy

Do Son August 2, 2025

In an expose, DomainTools has peeled back the curtain on one of the most sophisticated and economically...

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets Lazarus Group, Software Supply Chain

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets

Do Son July 31, 2025

In a recently expose, Sonatype reveals a covert cyberespionage campaign orchestrated by the North Korea-linked Lazarus Group,...

Arizona Woman Jailed 8.5 Years for Running $17M “Laptop Farm” Enabling North Korean IT Spies North Korea Espionage, Employment Fraud

Arizona Woman Jailed 8.5 Years for Running $17M “Laptop Farm” Enabling North Korean IT Spies

Do Son July 27, 2025

The U.S. Department of Justice has announced the sentencing of Christina Marie Chapman, a 50-year-old woman from...

XORIndex: North Korea’s Evolving Supply Chain Malware Targets npm Ecosystem Again NPM Supply Chain, North Korea Malware

XORIndex: North Korea’s Evolving Supply Chain Malware Targets npm Ecosystem Again

Do Son July 15, 2025

A new chapter in the ongoing Contagious Interview campaign has emerged, as the Socket Threat Research Team...

OFAC Sanctions Key Players in North Korea’s Remote IT Worker Scheme Funding Weapons Programs North Korea Sanctions, Remote IT Scheme

OFAC Sanctions Key Players in North Korea’s Remote IT Worker Scheme Funding Weapons Programs

Do Son July 10, 2025

In a decisive move to counter North Korea’s use of cyber-enabled tactics to fund its weapons development,...

NimDoor: North Korean APT Uses Nim-Based Malware for Stealthy Web3 & Crypto Attacks on macOS! NimDoor, macOS Malware

NimDoor: North Korean APT Uses Nim-Based Malware for Stealthy Web3 & Crypto Attacks on macOS!

Do Son July 3, 2025

A new wave of North Korean cyberattacks is exploiting macOS systems in Web3 and cryptocurrency startups using...

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons

Do Son July 2, 2025

In a sweeping series of law enforcement actions, the U.S. Department of Justice (DOJ) has exposed and...

ClickFix Unmasked: How North Korea’s Kimsuky Group Turned PowerShell into a Weapon of Psychological Deception

Do Son July 1, 2025

In its latest threat intelligence report, the Genians Security Center (GSC) has uncovered a new evolution in...

From Code to Crypto Theft: DOJ Charges Four North Koreans for Infiltrating U.S. Companies and Laundering $900K in Virtual Currency

Do Son July 1, 2025

In a high-stakes cybercrime case with international ramifications, the U.S. Department of Justice has unsealed a five-count...

North Korea’s AI-Powered Cybercrime: Deepfakes & Fake Personas Infiltrate 300+ US Companies via Remote IT Jobs The North Korean IT worker ecosystem

North Korea’s AI-Powered Cybercrime: Deepfakes & Fake Personas Infiltrate 300+ US Companies via Remote IT Jobs

Do Son July 1, 2025

Microsoft Threat Intelligence reveals how North Korea’s remote IT worker program has evolved into a highly organized,...

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons

Do Son June 30, 2025

In a major national security crackdown, the U.S. Department of Justice (DOJ) has dismantled a sprawling cyber-enabled...

North Korean APT Launches Massive npm Supply Chain Attack: Typosquatting & Fake Jobs Steal Crypto from Devs npm Supply Chain Attack, North Korean APT

npm Supply Chain Attack, North Korean APT

North Korean APT Launches Massive npm Supply Chain Attack: Typosquatting & Fake Jobs Steal Crypto from Devs

Do Son June 26, 2025

In a detailed expose, the Socket Threat Research Team has uncovered an ongoing and highly targeted supply...

BitoPro Crypto Heist: North Korea’s Lazarus Group Steals $11.5M via Phished Employee BitoPro Hack, Lazarus Group

BitoPro Crypto Heist: North Korea’s Lazarus Group Steals $11.5M via Phished Employee

Do Son June 24, 2025

In May 2025, the Taiwanese cryptocurrency exchange BitoPro fell victim to a cyberattack, resulting in the loss...

North Korean Hackers Exploit GitHub and Dropbox in Targeted Spearphishing Attacks CVE-2024-3393 - Zservers sanctions

North Korean Hackers Exploit GitHub and Dropbox in Targeted Spearphishing Attacks

Do Son June 24, 2025

A new report from EnkiWhiteHat has unveiled a sophisticated cyber espionage operation that leverages GitHub private repositories,...

North Korean BlueNoroff Uses Deepfakes in Zoom Scams to Install macOS Malware for Crypto Theft Visualization of attack chain

North Korean BlueNoroff Uses Deepfakes in Zoom Scams to Install macOS Malware for Crypto Theft

Do Son June 23, 2025

Huntress exposes a sophisticated intrusion by North Korean threat actor TA444, using a fake Zoom extension, AppleScript...

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals North Korean APT, PylangGhost

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals

Do Son June 20, 2025

Recently, Cisco Talos unveiled a new Python-based remote access trojan (RAT) dubbed PylangGhost, used exclusively by a...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

North Korea

ScarCruft APT Deploys VCD Ransomware, Uses PubNub & New Malware in Espionage Campaign

Beavertail Malware Returns: North Korean Hackers Use NPM Packages to Steal Crypto & Secrets

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage

The Ultimate Insider Threat: How North Korean IT Workers Infiltrated the Global Remote Economy

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets

Arizona Woman Jailed 8.5 Years for Running $17M “Laptop Farm” Enabling North Korean IT Spies

XORIndex: North Korea’s Evolving Supply Chain Malware Targets npm Ecosystem Again

OFAC Sanctions Key Players in North Korea’s Remote IT Worker Scheme Funding Weapons Programs

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons

From Code to Crypto Theft: DOJ Charges Four North Koreans for Infiltrating U.S. Companies and Laundering $900K in Virtual Currency

North Korea’s AI-Powered Cybercrime: Deepfakes & Fake Personas Infiltrate 300+ US Companies via Remote IT Jobs

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons

North Korean Hackers Exploit GitHub and Dropbox in Targeted Spearphishing Attacks

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals