North Korean hackers target S.Korea’s shipbuilders
North Korea-linked state-sponsored hacker groups orchestrated a series of cyberattacks on South Korean shipbuilding companies in August and September 2023, the National Intelligence Service of South Korea revealed in a public alert.
The NIS believes that these hacking attempts were part of North Korean leader Kim Jong Un's strategy to strengthen its naval military power by building advanced warships.
The intelligence agency said that the attacks involved phishing emails designed to infect victims with malware.
The NIS didn’t disclose what shipbuilding companies were affected nor it provided any specific details about the damage caused by the intrusions or what North Korean threat actors were behind the attacks.
Recently, a North Korean state-sponsored hacker crew known as Lazarus Group has been observed using a previously undocumented backdoor in an attack targeting a Spanish aerospace company. After gaining access to the network, the Lazarus hackers deployed multiple payloads, including a previously unseen remote access trojan (RAT) called ‘LightlessCan.’
Latest Posts
What is Vulnerability Management? A Beginner's Guide
In this article will try to cover basics of vulnerability management process and why it is important to every company.
Cyber Security Week in Review: September 6, 2024
In brief: the US charges Russian GRU hackers for attacks on Ukraine, Apache, Cisco, Zyxel patch high-risk flaws, Google fixes Android zero-day, and more.
Threat actors using MacroPack Red Team framework to deploy Brute Ratel, Havoc and PhantomCore
Some of the documents appeared to be part of legitimate Red Team exercises, while other were intended for malicious purposes.