North Korean Hackers Deploy Malicious npm Packages in Sophisticated Developer-Targeting Campaign
Security researchers have discovered North Korean hackers distributing malware through 11 malicious npm packages that were downloaded over 5,600 times. The sophisticated campaign, known as 'Contagious Interview', uses fake job interviews and social engineering to target developers and infiltrate systems.
FBI Links North Korea's Lazarus Group to Record $1.5B Bybit Cryptocurrency Heist
The FBI has officially attributed a massive $1.5 billion cryptocurrency theft from Bybit exchange to North Korea's Lazarus Group hackers. As authorities track the stolen assets being laundered across blockchains, they've identified numerous suspicious wallet addresses and called for industry-wide action to help recover the funds.
North Korean Hackers Deploy Hidden 'Phantom Circuit' to Control Global Cyber Operations
SecurityScorecard researchers uncover Lazarus group's sophisticated administrative layer used to manage cybercrime targeting cryptocurrency and software developers. The hidden infrastructure, linked to Pyongyang, oversees malware delivery and stolen data while exploiting LinkedIn recruitment schemes.
North Korean Hackers Steal $308M in Sophisticated Crypto Heist from Japanese Firm
US and Japanese authorities identify North Korean hacking group 'TraderTraitor' as responsible for a major cryptocurrency theft from DMM. The attackers used elaborate social engineering via LinkedIn to compromise a wallet software company employee, leading to the theft of over 4,500 Bitcoin.
North Korean Hackers Target Nuclear Industry with Sophisticated Job Scam
The notorious Lazarus hacking group has launched targeted attacks against nuclear industry professionals using elaborate fake job interviews to deploy malware. Two employees at the same nuclear organization were targeted within weeks, highlighting the persistent threat to sensitive infrastructure.
Lazarus Group Develops Stealthy macOS Malware Using Extended Attributes
North Korean hackers have created RustyAttr, a sophisticated malware that hides within macOS metadata to evade detection. Built with Tauri framework, this innovative technique allows malicious code to bypass security measures while using deceptive tactics to target cryptocurrency users.