North Korean Hackers Lure Critical Infrastructure Employees With Fake Jobs

A North Korean threat actor tracked as UNC2970 has been using job-themed lures in an effort to deliver new malware to individuals working in critical infrastructure sectors.

NC2970 targets in the US, UK, Netherlands, Cyprus, Germany, Sweden, Singapore, Hong Kong, and Australia.

#NorthKorea #UNC2970 #jobs #recruiting #infrastructure #malware #security #cybersecurity #hackers #hacking #hacked

https://cybernews.com/security/us-mc2-background-check-data-leak/

#NorthKorean cyber-espionage group #UNC2970 is now targeting aerospace and energy sectors using job-themed phishing lures to deliver a new backdoor, MISTPEN.

https://thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html

#cybersecurity #hacking #malware

"An Offer You Can Refuse: UNC2970 Backdoor Deployment Using Trojanized PDF Reader" published by Mandiant. #BURNBOOK, #MISTPEN, #UNC2970, #DPRK, #CTI https://cloud.google.com/blog/topics/threat-intelligence/unc2970-backdoor-trojanized-pdf-reader/

An Offer You Can Refuse: UNC2970 Backdoor Deployment Using Trojanized PDF Reader
#UNC2970 #BURNBOOK #MISTPEN
https://cloud.google.com/blog/topics/threat-intelligence/unc2970-backdoor-trojanized-pdf-reader/

[CyberLand News] Weekly Threats and Malware
> #UNC2970 #UNC577 #UNC4034 #malware
> #Emotet #botnet
> #CISA #VMWare #vulnerability #CVE-2021-39144
> #GoBruteforcer #malware #botnet (#Golang)

#cybernews #cybersecurity #infosec #cyberattack #CyberThreat

https://tribalsec.substack.com/p/cyberland-news-weekly-threats-and-504