#lazarus-group

[ follow ]
#north-korea #cybersecurity #cyber-espionage #cryptocurrency-security #cyberattack #data-breach #e-commerce
Cryptocurrency
fromBitcoin Magazine
1 day ago

Bitrefill Discloses Cyberattack, Points To North Korea's Lazarus Group

Bitrefill suffered a cyberattack on March 1 originating from a compromised employee laptop, with the Lazarus Group suspected as the perpetrator, resulting in stolen cryptocurrency and exposure of approximately 18,500 customer records.
Information security
fromThe Hacker News
1 month ago

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus Group used fake recruitment campaigns to distribute malicious npm and PyPI packages embedded via dependencies in coding-assessment repositories.
Information security
fromThe Hacker News
2 months ago

North Korea-Linked Hackers Steal $2.02 Billion in 2025, Leading Global Crypto Theft

North Korean-linked threat actors stole at least $2.02 billion in cryptocurrency in 2025, driving a global surge and accounting for a record share of service compromises.
fromThe Hacker News
3 months ago

Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera

The operation began when NorthScan's Heiner García impersonated a U.S. developer targeted by a Lazarus recruiter using the alias "Aaron" (also known as "Blaze"). Posing as a job-placement "business," Blaze attempted to hire the fake developer as a frontman; a known Chollima tactic used to slip North Korean IT workers into Western companies, mainly in the finance, crypto, healthcare, and engineering sectors.
Information security
#north-korea
more#north-korea
Information security
fromTheregister
4 months ago

North Korean Dream Job attacks hit Europe's UAV sector

North Korea's Lazarus Group used Operation DreamJob fake job offers to deliver malware, compromise European UAV suppliers, and steal IP for espionage.
Information security
fromThe Hacker News
6 months ago

Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

Lazarus Group used a Telegram social-engineering campaign to deliver PondRAT, ThemeForestRAT, and RemotePE, enabling credential theft and network discovery in a DeFi organization.
fromTheregister
7 months ago

Lazarus Group rises again, this time with fake FOSS

Lazarus Group has increasingly pivoted from disruption to long-term infiltration, using tailored malware, modular payloads, and infrastructure evasion techniques to achieve persistent access to high-value targets - including the open source software ecosystem.
Privacy professionals
Cryptocurrency
fromFast Company
9 months ago

These crypto detectives helped crack North Korea's latest $1.5 billion blockchain heist

The largest cryptocurrency heist occurred at Bybit, resulting in a loss of $1.5 billion.
[ Load more ]