Tag: North Korea
-
The Register: Chinese spies suspected of ‘moonlighting’ as tawdry ransomware crooks
Source URL: https://www.theregister.com/2025/02/14/chinese_spies_ransomware_moonlighting/ Source: The Register Title: Chinese spies suspected of ‘moonlighting’ as tawdry ransomware crooks Feedly Summary: Some employees steal sticky notes, others ‘borrow’ malicious code A crew identified as a Chinese government-backed espionage group appears to have started moonlighting as a ransomware player – further evidence that lines are blurring between nation-state cyberspies…
-
The Register: Ransomware isn’t always about the money: Government spies have objectives, too
Source URL: https://www.theregister.com/2025/02/12/ransomware_nation_state_groups/ Source: The Register Title: Ransomware isn’t always about the money: Government spies have objectives, too Feedly Summary: Analysts tell El Reg why Russia’s operators aren’t that careful, and why North Korea wants money AND data Feature Ransomware gangsters and state-sponsored online spies fall on opposite ends of the cyber-crime spectrum.… AI Summary…
-
The Register: Crimelords and spies for rogue states are working together, says Google
Source URL: https://www.theregister.com/2025/02/12/google_state_cybercrime_report/ Source: The Register Title: Crimelords and spies for rogue states are working together, says Google Feedly Summary: Only lawmakers can stop them. Plus: software needs to be more secure, but what’s in it for us? Google says the the world’s lawmakers must take action against the increasing links between criminal and state-sponsored…
-
The Register: I’m a security expert, and I almost fell for a North Korea-style deepfake job applicant …Twice
Source URL: https://www.theregister.com/2025/02/11/it_worker_scam/ Source: The Register Title: I’m a security expert, and I almost fell for a North Korea-style deepfake job applicant …Twice Feedly Summary: Remote position, webcam not working, then glitchy AI face … Red alert! Twice, over the past two months, Dawid Moczadło has interviewed purported job seekers only to discover that these…
-
The Register: Google to Iran: Yes, we see you using Gemini for phishing and scripting. We’re onto you
Source URL: https://www.theregister.com/2025/01/31/state_spies_google_gemini/ Source: The Register Title: Google to Iran: Yes, we see you using Gemini for phishing and scripting. We’re onto you Feedly Summary: And you, China, Russia, North Korea … Guardrails block malware generation Google says it’s spotted Chinese, Russian, Iranian, and North Korean government agents using its Gemini AI for nefarious purposes,…
-
Krebs on Security: Infrastructure Laundering: Blending in with the Cloud
Source URL: https://krebsonsecurity.com/2025/01/infrastructure-laundering-blending-in-with-the-cloud/ Source: Krebs on Security Title: Infrastructure Laundering: Blending in with the Cloud Feedly Summary: In an effort to blend in and make their malicious traffic tougher to block, hosting firms catering to cybercriminals in China and Russia increasingly are funneling their operations through major U.S. cloud providers. Research published this week on…
-
The Register: Lazarus Group cloned open source projects to plant backdoors, steal credentials
Source URL: https://www.theregister.com/2025/01/29/lazarus_groups_supply_chain_attack/ Source: The Register Title: Lazarus Group cloned open source projects to plant backdoors, steal credentials Feedly Summary: Stealing crypto is so 2024. Supply-chain attacks leading to data exfil pays off better? North Korea’s Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing…