Category: North Korea
-
Phishing Attacks Against People Seeking Programming Jobs
Phishing Attacks Against People Seeking Programming Jobs This is new. North Korean hackers are posing as company recruiters, enticing job candidates to participate in coding challenges. When they run the code they are supposed to work on, it installs malware on their system. News article. Bruce Schneier Go to bruce schneier
-
Detecting fraudulent North Korean hires: A CISO playbook
Detecting fraudulent North Korean hires: A CISO playbook Has a North Korean threat actor applied for a position at your organization, or even been hired? We’re sharing a toolkit to help you detect and avoid that risk. Ross McKerchar Go to sophos
-
First Sentencing in Scheme to Help North Koreans Infiltrate US Companies
First Sentencing in Scheme to Help North Koreans Infiltrate US Companies An Arizona woman was sentenced to eight-and-a-half years in prison for her role helping North Korean workers infiltrate US companies by pretending to be US workers. From an article: According to court documents, Chapman hosted the North Korean IT workers’ computers in her own…
-
Threat Intelligence Executive Report – Volume 2025, Number 3
Threat Intelligence Executive Report – Volume 2025, Number 3 This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during March and April mindimcdowell Go to sophos
-
China, Russia, Iran, and North Korea Intelligence Sharing
China, Russia, Iran, and North Korea Intelligence Sharing Former CISA Director Jen Easterly writes about a new international intelligence sharing co-op: Historically, China, Russia, Iran & North Korea have cooperated to some extent on military and intelligence matters, but differences in language, culture, politics & technological sophistication have hindered deeper collaboration, including in cyber. Shifting…
-
North Korean Hackers Steal $1.5B in Cryptocurrency
North Korean Hackers Steal $1.5B in Cryptocurrency It looks like a very sophisticated attack against the Dubai-based exchange Bybit: Bybit officials disclosed the theft of more than 400,000 ethereum and staked ethereum coins just hours after it occurred. The notification said the digital loot had been stored in a “Multisig Cold Wallet” when, somehow, it…
-
US woman faces years in federal prison for running laptop farm for N Korean IT workers
US woman faces years in federal prison for running laptop farm for N Korean IT workers Christian Marie Chapman, of Litchfield Park, Arizona, helped generate over US $17 million for North Korea after over 300 US companies unwittingly hired staff believing them to be US citizens. Read more in my article on the Hot for…
-
North Korean hackers masquerade as remote IT workers and venture capitalists to steal crypto and secrets
North Korean hackers masquerade as remote IT workers and venture capitalists to steal crypto and secrets In itslust for stealing cryptocurrency and sensitive information, North Korean hackers are disguising themselves as remote IT workers, recruiters, and even venture capitalists. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley