North Korean threat actors have been linked to two campaigns in which they masquerade as both job recruiters and seekers to distribute malware and obtain unauthorized employment with organizations based in the U.S. and other parts of the world.
The activity clusters have been codenamed Contagious Interview and Wagemole, respectively, by Palo Alto Networks Unit 42.
While the first set of attacks
Attacks leveraging the DarkGate commodity malware targeting entities in the U.K., the U.S., and India have been linked to Vietnamese actors associated with the use of the infamousΒ Ducktail stealer.
"The overlap of tools and campaigns is very likely due to the effects of a cybercrime marketplace," WithSecureΒ saidΒ in a report published today. "Threat actors are able to acquire and use multiple
A sophisticated stealer-as-a-ransomware threat dubbedΒ RedEnergyΒ has been spotted in the wild targeting energy utilities, oil, gas, telecom, and machinery sectors in Brazil and the Philippines through their LinkedIn pages.
The .NET malware "possesses the ability to steal information from various browsers, enabling the exfiltration of sensitive data, while also incorporating different modules for
Login
FreshRSS