North Korean hackers target Southeast Asia with ‘stealthy’ new malware



News North Korean hackers target Southeast Asia with ‘stealthy’ new malware Researchers say APT37 threat group used phishing emails to deploy backdoors on victims’ devices, focusing on Cambodia Shreyas Reddy October 4, 2024 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON An illustration of Cambodia's Angkor Wat \| Image: NK Pro North Korean cybercriminals are using a new malware to secretly gain control of victim’s computers in a “sophisticated and stealthy” campaign targeting Southeast Asian countries, a U.S. cybersecurity firm reported on Thursday. Securonix said in a report that the threat group APT37, also known as Scarcruft and Reaper, used phishing emails to deliver a custom backdoor granting attackers “full access” to the compromised machine. The backdoor, dubbed “VeilShell” by researchers, comes with a wide range of Remote Access Trojan (RAT) capabilities including data extraction and task creation or manipulation, according to the report Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Why Kim Jong Un’s latest military reshuffle wasn’t tied to warship launch mishap 02High rollers: How North Korea could exploit casinos to finance nuclear weapons 03North Korea’s damaged warship begins repairs near port hosting Russia arms trade 04Lee Jae-myung pivoted right on North Korea. Will he stick to that as president? 05New effort to monitor North Korea sanctions is ‘shadow’ of UN Panel of Experts 06Why Trump’s Golden Dome could upset the ‘nuclear balance’ with North Korea 07More than just North Korean threats are driving ROK support for nuke submarines 08A fragile calm holds with North Korea — but don’t mistake it for stability

News

North Korean hackers target Southeast Asia with ‘stealthy’ new malware

Researchers say APT37 threat group used phishing emails to deploy backdoors on victims’ devices, focusing on Cambodia

Shreyas Reddy October 4, 2024

North Korean hackers target Southeast Asia with ‘stealthy’ new malware

An illustration of Cambodia's Angkor Wat | Image: NK Pro

North Korean cybercriminals are using a new malware to secretly gain control of victim’s computers in a “sophisticated and stealthy” campaign targeting Southeast Asian countries, a U.S. cybersecurity firm reported on Thursday.

Securonix said in a report that the threat group APT37, also known as Scarcruft and Reaper, used phishing emails to deliver a custom backdoor granting attackers “full access” to the compromised machine.

The backdoor, dubbed “VeilShell” by researchers, comes with a wide range of Remote Access Trojan (RAT) capabilities including data extraction and task creation or manipulation, according to the report

01Why Kim Jong Un’s latest military reshuffle wasn’t tied to warship launch mishap
02High rollers: How North Korea could exploit casinos to finance nuclear weapons
03North Korea’s damaged warship begins repairs near port hosting Russia arms trade
04Lee Jae-myung pivoted right on North Korea. Will he stick to that as president?
05New effort to monitor North Korea sanctions is ‘shadow’ of UN Panel of Experts
06Why Trump’s Golden Dome could upset the ‘nuclear balance’ with North Korea
07More than just North Korean threats are driving ROK support for nuke submarines
08A fragile calm holds with North Korea — but don’t mistake it for stability

North Korean hackers target Southeast Asia with ‘stealthy’ new malware

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy