Korean

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

AndyC 29 November 2025

Nov 28, 2025Ravie LakshmananSupply Chain Attack / Malware The North Korean threat actors behind the Contagious Interview campaign have continued...

North Korean threat actors use JSON sites to deliver malware via trojanized code

AndyC 18 November 2025

North Korean threat actors use JSON sites to deliver malware via trojanized code Pierluigi Paganini November 17, 2025 North Korean...

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

AndyC 15 November 2025

Nov 14, 2025Ravie LakshmananMalware / Threat Intelligence The North Korean threat actors behind the Contagious Interview campaign have once again...

Detecting fraudulent North Korean hires: A CISO playbook

AndyC 6 November 2025

The North Korean worker scheme has expanded into a global threat. Although it originally focused on U.S. technology companies, the...

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware

AndyC 18 October 2025

The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality of...

Magazine Insights

AI Gone Rogue – What Anthropic’s Report Means for Cybersecurity

AndyC 12 September 2025

When a North Korean scammer asks Claude "what is a muffin?" it seems innocent enough. When that same person uses...

Hacking

OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities

AndyC 10 May 2025

The North Korean threat actors behind the Contagious Interview campaign have been observed using updated versions of a cross-platform malware...

Hacking

North Korean Cybercriminals Utilize BeaverTail Malware through 11 Malicious npm Bundles

AndyC 6 April 2025

The cybercriminals from North Korea involved in the persistent Infectious Discussion initiative are expanding their influence on the npm environment...

North Korean Hackers Disguised as IT Workers Targeting UK, European Companies, Google Finds

North Korean Cybercriminals Posed as Information Technology Staff Attacking UK, European Enterprises, Uncovered by Google

AndyC 5 April 2025

In the United Kingdom, North Korean cybercriminals are applying for IT positions under the guise of legitimate workers, revealed by...

Hacking

Lazarus Ensemble Focuses on Employment Hunters With ClickFix Strategy to Launch GolangGhost Malware

AndyC 4 April 2025

The threat actors from North Korea responsible for Contagious Interview have embraced the growingly favored ClickFix social engineering strategy to...

Hacking

Targeted Developer Attacks: Lazarus Group Utilizes Marstech1 JavaScript Implant

AndyC 15 February 2025

Marstech1, an undisclosed JavaScript implant, has been deployed by the notorious Lazarus Group in malicious activities aimed at developers. SecurityScorecard...

Hacking

Malicious Actors from North Korea Use FERRET Malware Through Deceptive Employment Meetings on macOS

AndyC 5 February 2025

The clandestine individuals from North Korea associated with the Infectious Discussion initiative have been detected dispatching a series of Apple...

Hacking

React Admin Panel Enables Lazarus Group to Manage Worldwide Cyber Offensives

AndyC 30 January 2025

Recent sightings reveal that the Lazarus Group, a prominent threat entity from North Korea, is utilizing a "browser-based control center"...

Hacking

Legal Action Against 5 Suspects for Violations in $866K North Korean IT Employee Plan

AndyC 25 January 2025

The Department of Justice in the United States formally charged two individuals from North Korea, one person from Mexico, and...

Hacking

North Korean Computer Specialist Deception Associated with 2016 Fundraising Swindle and Phony Websites

AndyC 16 January 2025

Information security analysts have uncovered connections in infrastructure between the North Korean cybercriminals involved in the deceptive computer specialist ploys...

Korean

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

North Korean threat actors use JSON sites to deliver malware via trojanized code

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

Detecting fraudulent North Korean hires: A CISO playbook

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware

AI Gone Rogue – What Anthropic’s Report Means for Cybersecurity

OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities

North Korean Cybercriminals Utilize BeaverTail Malware through 11 Malicious npm Bundles

North Korean Cybercriminals Posed as Information Technology Staff Attacking UK, European Enterprises, Uncovered by Google

Lazarus Ensemble Focuses on Employment Hunters With ClickFix Strategy to Launch GolangGhost Malware

Malicious Actors from North Korea Use FERRET Malware Through Deceptive Employment Meetings on macOS

Legal Action Against 5 Suspects for Violations in $866K North Korean IT Employee Plan

North Korean Computer Specialist Deception Associated with 2016 Fundraising Swindle and Phony Websites

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Inside the Global Airline that Eliminated 14,600 SaaS Security Issues with AppOmni

Cybersecurity Crossed the AI Rubicon: Why 2025 Marked a Point of No Return

When Zero-Days Go Active: What Ongoing Windows, Chrome, and Apple Exploits Reveal About Modern Intrusion Risk

Securing the Road Ahead: The Intersection of Cybersecurity and Intelligent Transportation

GNV ferry fantastic under cyberattack probe amid remote hijack fears

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed