lazarusholic

Everyday is lazarus.dayβ

Threat Landscape Update: North Korean IT Workers, OSINT, and Remote Monitoring and Management Abuse

2025-01-08, Microsoft
https://thecyberwire.com/podcasts/microsoft-threat-intelligence/35/notes
#ITWorker #Podcast

Contents

Threat Landscape Update: North Korean IT Workers, OSINT, and Remote Monitoring and Management Abuse
In this episode of the Microsoft Threat Intelligence Podcast, host Sherrod DeGrippo is joined by security researchers Caitlin Hopkins, Diana Duvieilh, and Anna Seitz to discuss the latest trends in cybersecurity threats.
The team explores OSINT observations around Remote Monitoring and Management (RMM) tools like Screen Connect by nation-state actors and reveals how they are used to deploy malware like AsyncRAT, ransomware, and execute phishing scams. They also uncover alarming tactics, such as North Korean IT workers posing as legitimate coders to infiltrate organizations, who steal cryptocurrency and use it to fund their regime. Since 2017 they have contributed to the theft of more than $3 billion.
In this episode you’ll learn:
- The role of tech support scam websites in tricking victims into allowing remote access
- How cybercriminal and nation-state actors are increasingly exploiting remote monitoring
- Why the financial …