14 matches found
Unmasking Hidden Threats: Spotting a DPRK IT-Worker Campaign
Unmasking Hidden Threats: Spotting a DPRK IT-Worker Campaign By Duy-Phuc Pham and John Fokker · September 23, 2025 In today's complex threat landscape, staying ahead of sophisticated adversaries is paramount. Organizations face constant pressure to identify threats that do not always involve...
U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme
The U.S. Department of the Treasury's Office of Foreign Assets Control OFAC on Tuesday sanctioned a member of a North Korean hacking group called Andariel for their role in the infamous remote information technology IT worker scheme. The Treasury said Song Kum Hyok, a 38-year-old North Korean...
Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations
Since 2024, Microsoft Threat Intelligence has observed remote information technology IT workers deployed by North Korea leveraging AI to improve the scale and sophistication of their operations, steal data, and generate revenue for the Democratic People’s Republic of Korea DPRK. Among the changes...
North Korea Stole Your Job
For years, North Korea has been secretly placing young IT workers inside Western companies. With AI, their schemes are now more devious—and effective—than ever...
US Charges Five in North Korean IT Worker Hiring Scam
US prosecutors charged five, including North Koreans, for tricking firms into hiring fake IT workers, sending $866K+ to…...
North Korean Front Companies Impersonate U.S. IT Firms to Fund Missile Programs
Threat actors with ties to the Democratic People's Republic of Korea DPRK are impersonating U.S.-based software and technology consulting businesses in order to further their financial objectives as part of a broader information technology IT worker scheme. "Front companies, often based in China,...
North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean information technology IT workers who obtain employment under false identities in Western companies are not only stealing intellectual property, but are also stepping up by demanding ransoms in order to not leak it, marking a new twist to their financially motivated attacks. "In some...
Fake North Korean IT Workers Infiltrate Western Firms, Demand Ransom
North Korean hackers are infiltrating Western companies using fraudulent IT workers to steal sensitive data and extort ransom.…...
A week in security (September 23 – September 29)
Last week on Malwarebytes Labs: Millions of Kia vehicles were vulnerable to remote attacks with just a license plate number Privacy watchdog files complaint over Firefox quietly enabling its Privacy Preserving Attribution Telegram will hand over user details to law enforcement Don’t share the vir...
US Official Warns a Cell Network Flaw Is Being Exploited for Spying
Plus: Three arrested in North Korean IT workers fraud ring, Tesla staffers shared videos from owners’ cars, and more...
The 23andMe User Data Leak May Be Far Worse Than Believed
Plus: IT workers secretly funnel money to North Korea, a court in the US upholds keyword search warrants, and WhatsApp gets a passwordless upgrade on Android...
North Korea's Lazarus Group Suspected in $31 Million CoinEx Heist
The North Korea-affiliated Lazarus Group has stolen nearly $240 million in cryptocurrency since June 2023, marking a significant escalation of its hacks. According to multiple reports from Certik, Elliptic, and ZachXBT, the infamous hacking group is said to be suspected behind the theft of $31...
VIDEO: Cybersecurity Trends: A Look Back on 2017 and Key Predictions for 2018
Editor's Note: This article originally appeared on BizTechMagazine.com. The security landscape is constantly changing and 2017 had some major sea changes for IT on the security front. BizTech Magazine spoke with Rick McElroy and Paul Drapeau from Carbon Black to get their take on what the notable...
Cisco Warns of Vulns in Building Systems
Cisco Systems has warned of serious vulnerabilities in a device that connects a building’s ventilation, lighting, security, and energy supply systems so they can be controlled by IT workers remotely. The networking giant urged users of the Cisco Network Building Mediator products to patch the...