« Reports in 2021 »

211 reports

2021-11-05 • b Zx

The bZx post-mortem describes a phishing-driven compromise in which a developer’s private keys were stolen, giving the attacker access to bZx deployments on BSC and Polygon while leaving the Ethereum deployment unaffected. The attacker changed proxy targe…

#Cryptocurrency #Bluenoroff #bZx
2021-11-04 • KRCERT

KISA's Operation Bookcodes presentation describes a campaign that began in April 2019 against South Korean maritime, media, and security software targets. The attackers used malicious HWP documents and phishing links to install remote control malware, the…

#Youtube #BookCodes
2021-11-02 • IBM

IBM X-Force identifies ITG03 as a DPRK state-sponsored threat group with significant overlap with the publicly reported Lazarus Group, active since at least 2009. The group has supported North Korean objectives through espionage, sabotage, and asymmetric …

#ITG03
2021-10-28 • Poly Play

PolyPlay said attackers stole funds after sending a fake exchange listing email tied to a long-standing LinkedIn persona with many executive connections. The archived thread names a hacker wallet, 0x0040c81b7de0953e5b9fc056700479cace1b7500, and says the p…

#PolyPlay
2021-10-26 • Kaspersky

Kaspersky's Q3 2021 APT trends report says Lazarus attacked the defense industry with the MATA malware framework, using a trojanized application trusted by the intended victim. The execution chain began with a downloader that fetched additional malware fr…

#Trend #Andariel #Kimsuky