North Korean hackers target DPRK experts and media in new phishing attacks
Security firm finds ScarCruft cybercriminals used signature malware and will likely do so again in future campaigns
North Korean cybercriminals targeted leading DPRK experts and media organizations in a series of phishing attacks toward the end of last year, while laying the groundwork for a new campaign against cybersecurity professionals, according to a U.S. security firm.
In a joint investigation with NK Pro, SentinelLabs attributed the attacks with “high confidence” to North Korean threat group ScarCruft, also known as APT37 and InkySquid, based on similarities to past campaigns and the use of malware associated with the group.
By targeting experts and media organizations with a North Korea focus, the cybercrime group
- 01North Korea hints beach resort twice as long as Waikiki may finally open soon
- 02State media review: North Korea slams US ‘air pirates’ for raising risk of war
- 03What North Korea’s official budget reveals about its spending priorities in 2024
- 04How North Korean aggression and the Taiwan election complicate China-DPRK ties
- 05Satellite imagery shows Kim Jong Un’s east coast yacht, missile test activities
- 06State media review: North Korean festivals build up to former leader’s birthday
- 07Survey shows markets reign supreme in the daily lives of North Koreans
- 08What to make of North Korea’s apparent interest in naval nuclear propulsion
- 09How North Korean defectors shape the policies of countries where they settle
- 10Slump in life insurance sector points to unreported COVID deaths in North Korea