Lazarus Group
DOJ Wants to Claw Back $2.67 Million Stolen by Lazarus Group
The DOJ wants to seize $2.67 million from the $69 million in crypto the North Korean-backed Lazarus Group stole in from the options exchange Deribit in 2022 and online gambling platform Stake.com ...
Emulating the Politically Motivated North Korean Adversary Andariel – Part 2
AttackIQ has released a new attack graph that emulates the behaviors exhibited by the North Korean state-sponsored adversary Andariel during Operation Blacksmith which affected manufacturing, agricultural and physical security companies in multiple ...
Target Locked: Operation Sharpshooter
Operation Sharpshooter was a significant cyberattack by the Lazarus Group, targeting critical industries like finance, energy, and defense. Dive into the details of the attack and its implications and explore how AttackIQ ...
Intercept the Adversary: Lazarus Group – Operation In(ter)ception
Operation In(ter)ception reveals Lazarus Group's 2019 cyber campaign targeting military and aerospace organizations in Europe and the Middle East. Delve into the attacker's tactics on LinkedIn, their covert infiltration methods, and the ...
Dream Job, or Is It?
In the summer of 2020, ClearSky, a venture capital and growth equity firm investing in innovative companies in the cybersecurity and sustainable energy sectors, investigated into a campaign dubbed "Dream Job," highly ...
US Sanctions Sinbad Mixer: Disrupting Threats Unveiled
The U.S. Treasury Department recently took a significant step in the ongoing battle against cybercrime by imposing sanctions on Sinbad. It’s a virtual currency mixer utilized by the North Korea-linked Lazarus Group ...
Lazarus Group Exploits Log4j Flaw in New Malware Campaign
The notorious North Korea-backed Lazarus Group continues to change up its tactics to evade detection, with a new campaign featuring the exploitation of the Log4j critical vulnerability and three new malware families ...
N. Korean Threat Groups Mixing Tactics to Evade Detection
Researchers with Google-owned Mandiant last month wrote about increasing collaboration among North Korea-supported threat groups as one indication of a larger evolution of the regime’s offensive cyber program. The half-dozen or so ...
Protect Your Servers: JetBrains TeamCity Flaw Alert
In recent news, Microsoft has issued a warning about a JetBrains TeamCity flaw being exploited by North Korean threat actors. These attacks, linked to the infamous Lazarus Group, pose a significant risk ...
Founders of Crypto Mixer Tornado Cash Indicted for Laundering $1 Billion
The U.S. government is taking a big swing at two founders of the Tornado Cash cryptocurrency mixer that allegedly laundered more than $1 billion in criminal proceeds from cyberthreat actors that include ...
