North Korean Hackers Found Behind a Range of Credential Theft Campaigns

20 November 2021

A threat actor with ties to North Korea has been linked to a prolific wave of credential theft campaigns targeting research, education, government, media and other organizations, with two of the attacks also attempting to distribute malware that could be used for intelligence gathering. Enterprise security firm Proofpoint attributed the infiltrations to a group it tracks as TA406, and by the wider threat intelligence community under the monikers Kimsuky (Kaspersky), Velvet Chollima (CrowdStrike), Thallium (Microsoft), Black Banshee (PwC), ITG16 (IBM), and the Konni Group (Cisco Talos).

Read full article on The Hacker News

Date:

20 November 2021

Categorie(s):

NEWS

Tag(s):

Campaigns, Credential Theft, Found, Malware, Range

Attackers evade detection by leveraging Microsoft Graph API3 May 2024
Microsoft details broad plan to enhance its cybersecurity practices3 May 2024
You get a passkey, you get a passkey, everyone should get a passkey3 May 2024
Dell Advances Data Protection Portfolio Amid Rising Cyber Threats3 May 2024
Best Identity Theft Protection and Monitoring Services for 2024: Aura Is Our New Winner – CNET3 May 2024