October 27, 2021
NK News Logo

Hackers infect DailyNK website with malware to spy on readers

Cybersecurity firm links attack to North Korean group, with expert warning site still vulnerable to similar breaches
Nils Weisensee August 18, 2021
Hackers infect DailyNK website with malware to spy on readers
SHARE
Image: NK News | A screenshot showing the results of an automated security scan of the dailynk.com website

For at least two months, hackers linked to North Korea have been attacking readers of the DailyNK website with custom malware capable of stealing files and passwords, cybersecurity firm Volexity revealed in a report on Tuesday. 

The attack used two known vulnerabilities in Microsoft’s Internet Explorer and Edge web browsers to install malware dubbed “Bluelight,” according to the researchers. Once launched, the malicious software reportedly takes frequent screenshots, copies files, steals passwords and shares details about the victim’s computer with the hackers. 

Recent Stories

South Korean spy agency to support university program on counterespionage
South Korean spy agency to support university program on counterespionage
North Korean hackers likely behind barrage of cyberattacks against journalists
North Korean hackers likely behind barrage of cyberattacks against journalists
Cryptocurrency guru pleads guilty to conspiracy to violate North Korea sanctions
Cryptocurrency guru pleads guilty to conspiracy to violate North Korea sanctions

About the Author

Nils Weisensee

Nils Weisensee

Nils Weisensee is Director of News Operations at Korea Risk Group and covers cybersecurity for NK Pro. He previously founded information security firm Frontier Intelligence, served as head of operations at non-profit Choson Exchange, and was a reporter for DAPD and the Associated Press.

View more articles by Nils Weisensee
© 2021, Korea Risk Group (NK Consulting Inc.). All Rights Reserved