Suspected North Korean hackers deploy corrupt Android app in attack on reporter
Researchers say powerful malware comes disguised as fake app, highlighting overlap with past DPRK cyber campaigns
Suspected North Korean hackers spread a convincing but malware-laced Android application that provides sweeping control over victims’ devices, in a targeted attack against a journalist covering the DPRK, Seoul-based non-profit Interlab told NK Pro.
The spyware, which the researchers dub RambleOn in a new report, is disguised as a secure messaging application, but in reality fetches malicious payloads from Russian and Swiss cloud service providers.
NK Pro obtained a sample of the malware after an individual messaged Korea Risk Group CEO Chad O’Carroll and claimed to have exclusive information about North Korea’s widely
- 01Kim Jong Un reviews old satellite imagery despite North Korea’s new eyes in sky
- 02Eyes above: How a new ROK satellite will help monitor North Korea’s every move
- 03Timeline: From North Korea’s satellite launch to scrapping 2018 military deal
- 04North Korea’s post-reform elections looked a lot like those that came before
- 05State media review: North Korea faults ‘puppets’ for collapse of military deal
- 06In orbit: Everything we know about North Korea’s new spy satellite so far
- 07Why it matters if South Koreans personally know a North Korean defector
- 08Reopening in slow motion: The growing risks of North Korea’s two-tiered scheme