UCID902: Uncovering nation state watering hole credential harvesting campaigns targeting human rights activists by APT threat group UCID902
Contents
12 Apr Uncovering nation state watering hole credential harvesting campaigns targeting human rights activists by APT threat group UCID902
UCID902: Uncovering nation state watering hole credential harvesting campaigns targeting human rights activists by APT threat group UCID902
Threat Report – by Ovi Liber @ Interlab
Introduction
Since 2021, Interlab has closely been monitoring events conducted by an advanced persistent threat group we track with Unidentified Cluster ID (UCID) – UCID902. Based on our analysis, we conclude the attempts made by this actor demonstrate continued targeting of human rights groups and activists related to advocacy of human rights in North Korea. In addition, we are continually observing this actor utilise the compromising of legitimate business websites to host their phishing kits. We believe this to be a result of either comprising of the original website developer’s infrastructure, or exploitation of the web servers themselves. We have found that the actor is a motivated, well-resourced advanced …
UCID902: Uncovering nation state watering hole credential harvesting campaigns targeting human rights activists by APT threat group UCID902
Threat Report – by Ovi Liber @ Interlab
Introduction
Since 2021, Interlab has closely been monitoring events conducted by an advanced persistent threat group we track with Unidentified Cluster ID (UCID) – UCID902. Based on our analysis, we conclude the attempts made by this actor demonstrate continued targeting of human rights groups and activists related to advocacy of human rights in North Korea. In addition, we are continually observing this actor utilise the compromising of legitimate business websites to host their phishing kits. We believe this to be a result of either comprising of the original website developer’s infrastructure, or exploitation of the web servers themselves. We have found that the actor is a motivated, well-resourced advanced …