Lazarus Group - Tagged - Security Boulevard

GitHub Developers Targeted by North Korea’s Lazarus Group

Jeffrey Burt — Fri, 21 Jul 2023 19:51:33 +0000

The Lazarus Group is behind a social engineering campaign that uses repository invitations and malicious npm packages to target developers on GitHub.

The post GitHub Developers Targeted by North Korea’s Lazarus Group appeared first on Security Boulevard.

Lazarus Assault Via 3CX Exposes Need to Rethink Security

Teri Robinson — Wed, 12 Apr 2023 12:00:52 +0000

When North Korean threat actors the Lazarus Group exploited a legitimate update to the 3CXDesktopApp—a softphone application from 3CX—security professionals didn’t initially pick up on the import of the activity and tactics that signaled the attack. In fact, according to CrowdStrike, which discovered the attack, even experienced security professionals pooh-poohed detections as false positives. And..

The post Lazarus Assault Via 3CX Exposes Need to Rethink Security appeared first on Security Boulevard.

Warning: N. Korean Job Scams Push Trojans via LinkedIn

Richi Jennings — Fri, 30 Sep 2022 17:32:02 +0000

Hey, hey, DPRK, how many people will you scam today?

The post Warning: N. Korean Job Scams Push Trojans via LinkedIn appeared first on Security Boulevard.

U.S. Indicts North Korean Hackers in Theft of $200 Million

BrianKrebs — Wed, 17 Feb 2021 21:12:56 +0000

The U.S. Justice Department today unsealed indictments against three men accused of working with the North Korean regime to carry out some of the most damaging cybercrime attacks over the past decade, including the 2014 hack of Sony Pictures, the global WannaCry ransomware contagion of 2017, and the theft of roughly $200 million and attempted theft of more than $1.2 billion from banks and other victims worldwide.

The post U.S. Indicts North Korean Hackers in Theft of $200 Million appeared first on Security Boulevard.

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

BrianKrebs — Thu, 01 Oct 2020 16:36:19 +0000

Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.

The post Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam appeared first on Security Boulevard.

Lazarus Group May Have Hacked Indian Nuclear Power Plant

Silviu STAHIE — Thu, 31 Oct 2019 13:28:17 +0000

Authorities from the Nuclear Power Corporation of India Limited (NPCIL) have admitted that malware, believed to originate from the Lazarus Group, infected the administrative network of the Kudankulam Nuclear Power Plant. Initial reports about possible problems with the Kudankulam Nuclear Power Plant (KKNPP) surfaced a couple of days ago when a researcher who used to […]

The post Lazarus Group May Have Hacked Indian Nuclear Power Plant appeared first on Security Boulevard.

Jackson County pays ransomware operators $400k to regain access to computers

Filip Truta — Mon, 11 Mar 2019 12:05:24 +0000

Officials in Jackson County, a rural area in the southeastern US state of Georgia, were forced over the weekend to pay hackers almost half a million dollars after a ransomware attack brought its entire fleet of computer systems to its knees. According to statescoop.com, the county government’s entire email system was taken offline following the […]

The post Jackson County pays ransomware operators $400k to regain access to computers appeared first on Security Boulevard.

North Korean Lazarus Group Starts Targeting Russian Organizations

Lucian Constantin — Wed, 20 Feb 2019 13:13:10 +0000

In an unusual move, the Lazarus hacking group associated with the North Korean government has recently started targeting organizations from Russia. The group’s primary targets until now have been organizations from countries with which North Korea has geopolitical tensions, such as South Korea, Japan and the United States. Researchers from Check Point Software Technologies found..

The post North Korean Lazarus Group Starts Targeting Russian Organizations appeared first on Security Boulevard.

Windows VCF Zero-Day Exploit Allows Remote Code Execution

Lucian Constantin — Wed, 16 Jan 2019 14:27:08 +0000

A new unpatched vulnerability in Windows has been disclosed along with proof-of-concept exploit code. It could allow hackers to more easily install malware on computers, but it requires user interaction. The vulnerability was discovered by a security researcher named John Page, aka hyp3rlinx, who reported it to Microsoft in August through Trend Micro’s Zero Day..

The post Windows VCF Zero-Day Exploit Allows Remote Code Execution appeared first on Security Boulevard.

Cloud Hosting Provider DataResolution.net Battling Christmas Eve Ransomware Attack

BrianKrebs — Wed, 02 Jan 2019 18:32:37 +0000

Cloud hosting provider Dataresolution.net is struggling to bring its systems back online after suffering a ransomware infestation on Christmas Eve, KrebsOnSecurity has learned. The company says its systems were hit by the Ryuk ransomware, the same malware strain that crippled printing and delivery operations for multiple major U.S. newspapers over the weekend.

The post Cloud Hosting Provider DataResolution.net Battling Christmas Eve Ransomware Attack appeared first on Security Boulevard.