Infected by GTA 5 Cheats: How an Infostealer Infection Unmasked a North Korean Agent
Contents
Infected by GTA 5 Cheats: How an Infostealer Infection Unmasked a North Korean Agent
State-sponsored cybercrime is evolving. Foundational research by Kudelski Security, utilizing Hudson Rock’s extensive cybercrime database, recently mapped out how North Korean (DPRK) IT workers use proxy networks to infiltrate Western companies, secure remote jobs, and fund their regime. But what happens when one of these highly skilled operatives makes a catastrophic operational security mistake?
Kudelski Security Research Snippet
Image: Snippet from Kudelski Security’s foundational research on the DPRK Fake IT Worker network.
Using cybercrime intelligence data from Hudson Rock, we analyzed a machine belonging to a suspected DPRK IT worker that was accidentally infected with the LummaC2 infostealer. Instead of corporate credentials, this log contained the ultimate “smoking gun” exposing a previously undocumented Indonesian proxy node. Here is a look inside the digital life of a state-sponsored fraudster.
Overview of Infected Machine Files
Image: Overview of the extracted files from the infected …
State-sponsored cybercrime is evolving. Foundational research by Kudelski Security, utilizing Hudson Rock’s extensive cybercrime database, recently mapped out how North Korean (DPRK) IT workers use proxy networks to infiltrate Western companies, secure remote jobs, and fund their regime. But what happens when one of these highly skilled operatives makes a catastrophic operational security mistake?
Kudelski Security Research Snippet
Image: Snippet from Kudelski Security’s foundational research on the DPRK Fake IT Worker network.
Using cybercrime intelligence data from Hudson Rock, we analyzed a machine belonging to a suspected DPRK IT worker that was accidentally infected with the LummaC2 infostealer. Instead of corporate credentials, this log contained the ultimate “smoking gun” exposing a previously undocumented Indonesian proxy node. Here is a look inside the digital life of a state-sponsored fraudster.
Overview of Infected Machine Files
Image: Overview of the extracted files from the infected …