« Reports in 2026

416 reports

2026-06-03 • Pure Fi

Lazarus Group is described as a North Korean state-backed operation under the Reconnaissance General Bureau, functioning as a revenue-generating arm rather than an independent hacking collective. The excerpt says DPRK-linked actors have stolen an estimate…

#Lazarus
2026-05-29 • Poly Swarm

Lazarus-linked operators are using a three-stage malware framework, DPAPILoader, RemotePELoader, and RemotePE, to maintain stealthy long-term access in financial and cryptocurrency environments. DPAPILoader decrypts victim-bound payloads with Windows DPAP…

#Cryptocurrency #AppleJeus #Fileless #Finance #UNC4736 #FinancialGain #Espionage #CitrineSleet #Lazarus #GleamingPisces #POOLRAT #PondRAT #RemotePE #ThemeForestRAT #T1071.001 #T1027 #T1055 #T1562.006
2026-05-28 • Safe Dep

A malicious npm package, js-logger-pack, evolved from a probe into a dropper for MicrosoftSystem64, a cross-platform Node.js Single Executable Application that functions as an infostealer and RAT. The payload targets browser credentials, more than 80 cryp…

#NPM #FamousChollima #T1102.002 #T1119 #T1059.003 #T1567.002 #T1005 #T1113 #T1195.002 #T1056.001 #T1567 #T1543.001 #T1552 #T1547.001 #T1053.005 #T1059.001 #T1053 #T1102 #T1059 #T1195 #T1543 #T1552.004 #T1543.004 #T1547 #T1056 #HuggingFace