March 29, 2024

Web and Technology News

FBI says North Korean hackers preparing to cash out after high-profile crypto hacks

The U.S. government said it believes North Korean hackers are preparing to cash out millions of dollars stolen during a spate of high-profile crypto hacks. On Tuesday, the FBI warned cryptocurrency companies about recent blockchain activity connected to the theft of hundreds of millions of dollars in cryptocurrency by malicious actors affiliated with the North […]

North Korea-backed hackers breached JumpCloud to target cryptocurrency clients

North Korean state-backed hackers breached U.S. enterprise software company JumpCloud to target its cryptocurrency clients, security researchers said on Thursday. JumpCloud, a directory platform that allows enterprises to authenticate, authorize and manage users and devices, said this week that a nation-state actor was behind a June breach of its systems that forced the company to […]

North Korean hackers linked to Atomic Wallet crypto hack

Crypto researchers say North Korean state-backed hackers are likely behind a recent hack on Atomic Wallet customers, resulting in millions of dollars in estimated losses. Estonia-based Atomic Wallet is a non-custodial decentralized wallet, which means users are responsible for the assets they store. The company, which supports over 500 coins and tokens, including Bitcoin and […]

North Korean hackers linked to Atomic Wallet crypto hack by Carly Page originally published on TechCrunch

North Korean hackers impersonated journalists to gather intel from academics and think tanks

Security researchers have warned that North Korean government-backed hackers are impersonating journalists to gather strategic intelligence to help guide the country’s decision making. SentinelLabs researchers said on Tuesday that they had linked a social engineering campaign targeting experts in North Korean affairs to a North Korean advanced persistent threat (APT) group known as Kimsuky. The […]

North Korean hackers impersonated journalists to gather intel from academics and think tanks by Carly Page originally published on TechCrunch

US government targets North Korea’s illicit IT workforce with new sanctions

The U.S. government announced new sanctions against North Korea related to its army of illicit IT workers that have fraudulently gained employment to finance the regime’s weapons of mass destruction programs. North Korea maintains thousands of “highly skilled” IT workers around the world, primarily in China and Russia, which “generate revenue that contributes to its […]

US government targets North Korea’s illicit IT workforce with new sanctions by Carly Page originally published on TechCrunch

3CX’s supply chain attack was caused by… another supply chain attack

The incident responders investigating how hackers carried out a complex supply-chain attack targeting enterprise phone provider 3CX say the company was compromised by another supply chain attack. 3CX, which develops a software-based phone system used by over 600,000 organizations worldwide with more than 12 million active daily users, worked with cybersecurity company Mandiant to investigate the incident. […]

3CX’s supply chain attack was caused by… another supply chain attack by Carly Page originally published on TechCrunch

3CX blames North Korea for supply chain mass-hack

Enterprise phone provider 3CX has confirmed that North Korea-backed hackers were behind last month’s supply chain attack that appeared to target cryptocurrency companies. 3CX, which provides online voice, video conferencing and messaging services for businesses, worked with cybersecurity company Mandiant to investigate the attack. Hackers compromised the company’s desktop phone software used by hundreds of […]

3CX blames North Korea for supply chain mass-hack by Carly Page originally published on TechCrunch

North Korean hackers exploited Internet Explorer zero-day to spread malware

North Korean state-sponsored hackers exploited a previously unknown zero-day vulnerability in Internet Explorer to target South Korean users with malware, according to Google’s Threat Analysis Group. Google researchers discovered first discovered the zero-day flaw on October 31 when multiple individuals uploaded a malicious Microsoft Office document to the company’s VirusTotal tool. These documents purported to […]

North Korean hackers exploited Internet Explorer zero-day to spread malware by Carly Page originally published on TechCrunch

US officials link North Korean Lazarus hackers to $625M Axie Infinity crypto theft

U.S. officials have linked North Korean state-backed hacking group Lazarus to the recent theft of $625 million in cryptocurrency from the Ronin Network, an Ethereum-based sidechain made for the popular pay-to-earn game Axie Infinity.  The Treasury Department’s Office of Foreign Assets Control (OFAC) on Thursday announced new sanctions against an Ethereum wallet belonging to Lazarus. Blockchain […]