DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea
DPRK-linked threat actors use GitHub for command-and-control in attacks on South Korean organizations, employing obfuscated LNK files and PowerShell scripts.
DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea
DPRK-linked threat actors use GitHub for command-and-control in attacks on South Korean organizations, employing obfuscated LNK files and PowerShell scripts.
Solana DEX Warns Liquidity Providers to Withdraw After North Korean Employee Link Surfaces
Stabble's new management team confirmed that the former employee had worked at Stabble approximately one year earlier, emphasizing that there was no exploit, no breach, and no known security incident of any kind.
North Korea-Linked Hackers Steal $2.02 Billion in 2025, Leading Global Crypto Theft
North Korean-linked threat actors stole at least $2.02 billion in cryptocurrency in 2025, driving a global surge and accounting for a record share of service compromises.
DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams
North Korea–linked actors used ClickFix lures to deliver BeaverTail and InvisibleFerret malware to non-developer cryptocurrency, retail, and Web3 roles via fake hiring platforms.