Lazarus group – Experimental News Clipping Site

Hacker News: Lazarus Group deceives developers with 6 new malicious NPM packages

Mar 15, 2025

—

by

Source URL: https://cyberscoop.com/lazarus-group-north-korea-malicious-npm-packages-socket/ Source: Hacker News Title: Lazarus Group deceives developers with 6 new malicious NPM packages Feedly Summary: Comments AI Summary and Description: Yes Summary: The Lazarus Group has infiltrated the npm registry, introducing six malicious packages designed to deceive software developers, steal credentials, and disrupt their workflows. This incident highlights the ongoing threats…

Rekt: Not So Safe

Mar 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.rekt.news/not-so-safe Source: Rekt Title: Not So Safe Feedly Summary: North Korea’s Lazarus Group stole $1.4B from Bybit’s signers by exploiting a simple vulnerability in Safe’s system. A single yaml.load execution bypassed high-end security, turning a supposedly impenetrable system into one of the industry’s biggest disasters. AI Summary and Description: Yes Summary: The text…

The Register: Bybit declares war on North Korea’s Lazarus crime-ring to regain $1.5B stolen from wallet

Feb 26, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/26/bybit_lazarus_bounty/ Source: The Register Title: Bybit declares war on North Korea’s Lazarus crime-ring to regain $1.5B stolen from wallet Feedly Summary: Up to $140M in bounty rewards for return of Ethereum allegedly pilfered by hermit nation Cryptocurrency exchange Bybit, just days after suspected North Korean operatives stole $1.5 billion in Ethereum from it,…

Rekt: ByBit – Rekt

Feb 22, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.rekt.news/bybit-rekt Source: Rekt Title: ByBit – Rekt Feedly Summary: $1.43B heist on ByBit claims the throne on our Rekt Leaderboard! Lazarus pulled off the perfect digital sleight-of-hand, making multisig signers see legitimate transactions while signing away the keys to the kingdom. Now ByBit’s offering $140M to catch the hackers. AI Summary and Description:…

The Register: North Korea targets crypto developers via NPM supply chain attack

Feb 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/13/north_korea_npm_crypto/ Source: The Register Title: North Korea targets crypto developers via NPM supply chain attack Feedly Summary: Yet another cash grab from Kim’s cronies and an intel update from Microsoft North Korea has changed tack: its latest campaign targets the NPM registry and owners of Exodus and Atomic cryptocurrency wallets.… AI Summary and…

Krebs on Security: Microsoft Patch Tuesday, February 2025 Edition

Feb 12, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/02/microsoft-patch-tuesday-february-2025-edition/ Source: Krebs on Security Title: Microsoft Patch Tuesday, February 2025 Edition Feedly Summary: Microsoft today issued security updates to fix at least 56 vulnerabilities in its Windows operating systems and supported software, including two zero-day flaws that are being actively exploited. AI Summary and Description: Yes **Summary:** Microsoft has issued crucial updates…

The Register: Lazarus Group cloned open source projects to plant backdoors, steal credentials

Jan 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/29/lazarus_groups_supply_chain_attack/ Source: The Register Title: Lazarus Group cloned open source projects to plant backdoors, steal credentials Feedly Summary: Stealing crypto is so 2024. Supply-chain attacks leading to data exfil pays off better? North Korea’s Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing…

The Register: Datacus extractus: Harry Potter publisher breached without resorting to magic

Jan 20, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/20/harry_potter_publisher_breach/ Source: The Register Title: Datacus extractus: Harry Potter publisher breached without resorting to magic Feedly Summary: PLUS: Allstate sued for allegedly tracking drivers; Dutch DDoS; More fake jobs from Pyongyang; and more Infosec in brief Hogwarts doesn’t teach an incantation that could have saved Harry Potter publisher Scholastic from feeling the power…

The Register: UK ICO not happy with Google’s plans to allow device fingerprinting

Dec 23, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.theregister.com/2024/12/23/uk_ico_not_happy_with/ Source: The Register Title: UK ICO not happy with Google’s plans to allow device fingerprinting Feedly Summary: Also, Ascension notifies 5.6M victims, Krispy Kreme bandits come forward, LockBit 4.0 released, and more in brief Google has announced plans to allow its business customers to begin “fingerprinting" users next year, and the UK…

Slashdot: Tornado Cash Sanctions Overturned By US Appeals Court

Nov 28, 2024

—

by

system automation

in Uncategorized

Source URL: https://yro.slashdot.org/story/24/11/27/2019239/tornado-cash-sanctions-overturned-by-us-appeals-court Source: Slashdot Title: Tornado Cash Sanctions Overturned By US Appeals Court Feedly Summary: AI Summary and Description: Yes Summary: The U.S. federal appeals court ruling on Tornado Cash signifies a pivotal outcome in the ongoing privacy discourse regarding cryptocurrency. It highlights the limitations of government authority over decentralized technologies, potentially reshaping future…

Tag: Lazarus group