Korean
-
Technical Analysis: Sapphire Sleet’s Cascading AppleScript Payload Chain on macOS
Recent threat intelligence has uncovered a sophisticated macOS campaign attributed to the North Korean actor Sapphire Sleet. The campaign leverages…
Read More » -
APT37 Unmasked: The Highly Targeted NarwhalRAT Campaign
The threat actor identified as APT37 is currently deploying a highly sophisticated, multi-stage intrusion chain centered around NarwhalRAT. This campaign…
Read More » -
PHANTOMPULSE: A Sophisticated, Blockchain-Driven Remote Access Trojan
Recent technical analysis has brought to light the complexities of PHANTOMPULSE, a highly sophisticated Remote Access Trojan (RAT) engineered for…
Read More » -
The Evolution of Gunra: From Conti-Based Spinoff to a Sophisticated RaaS Ecosystem
The cyber threat landscape is witnessing a significant shift in the operational maturity of the Gunra ransomware group. What began…
Read More » -
Stealthy Pivot: North Korean Actors Leverage Git Hooks for ‘Contagious Interview’ Malware Delivery
In a sophisticated evolution of the ongoing “Contagious Interview” campaign, North Korean threat actors have pivoted away from traditional delivery…
Read More » -
Multiplatform Espionage: Deconstructing ScarCruft’s Sophisticated Supply-Chain Attack on Gaming Platforms
In a highly targeted display of cyber espionage, the North Korea-aligned APT group ScarCruft (also known as APT37 or Reaper)…
Read More » -
Deepfake Deception: Inside BlueNoroff’s AI-Driven Fileless Malware Campaign
In a sophisticated evolution of state-sponsored cyber espionage, the North Korean threat actor BlueNoroff (an affiliate of the Lazarus Group)…
Read More » -
The Evolution of Deception: Unmasking North Korean ‘Laptop Farms’ and Remote Work Infiltration
North Korean threat actors are refining a high-stakes social engineering playbook, leveraging the global shift toward remote work to bypass…
Read More » -
Sapphire Sleet’s Fake Zoom SDK Preys on macOS Users Through Social Engineering
A sophisticated cyber campaign orchestrated by North Korean threat actor Sapphire Sleet reveals a significant shift toward social engineering over…
Read More » -
APT37 Campaign: Social Engineering via Facebook & Tampered PDFelement Targets Defense Sector
North Korea-linked threat actor APT37 is conducting a sophisticated intrusion campaign that weaponizes Facebook and Telegram to deliver a tampered…
Read More » -
Fake BTS Tour Ticket Scams Target Fans Worldwide
As BTS makes its highly anticipated return to the global stage following their mandatory military service, K-pop fans worldwide are…
Read More » -
Threat Actors Weaponize Fake Microsoft Teams Domains to Target Users
North Korean state-sponsored threat actors, specifically the group known as UNC1069, are actively deploying counterfeit Microsoft Teams domains as part…
Read More » -
North Korean IT Worker Used Stolen Identity, AI-Generated Resume in Job Scam
A recent investigation exposed how a suspected North Korean IT worker allegedly used a stolen identity, AI-generated resume content, and…
Read More » -
Google Warns of AI‑Driven Adaptive Malware Rewriting Its Own Code
The cybersecurity landscape experienced a major shift in 2025 as threat actors transitioned from experimenting with artificial intelligence to fully…
Read More » -
Amazon Identified North Korean IT Worker by Tracking Keystroke Activity
Amazon has made a shocking discovery, uncovering a North Korean imposter who was posing as a systems administrator based in…
Read More » -
New Lazarus and Kimsuky Infrastructure Discovered with Active Tools and Tunneling Nodes
Security researchers from Hunt.io and Acronis Threat Research Unit have made a groundbreaking discovery, uncovering a complex network of operational…
Read More » -
AI-Driven Obfuscated Malicious Apps Bypassing Antivirus Detection to Deliver Malicious Payloads
Cybersecurity researchers have identified a sophisticated malware campaign leveraging artificial intelligence to enhance obfuscation techniques, enabling malicious applications to circumvent…
Read More »