Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Asia Produces More APT Actors, as Focus Expands Globally
Description: China- and North Korea-aligned groups account for more than half of global attacks, and an increasing number of countries look to cyber to balance power in the region.
Source: Dark Reading
May 27th, 2025 (3 days ago)
Xinbi Telegram Market Tied to $8.4B in Crypto Crime, Romance Scams, North Korea Laundering
Description: A Chinese-language, Telegram-based marketplace called Xinbi Guarantee has facilitated no less than $8.4 billion in transactions since 2022, making it the second major black market to be exposed after HuiOne Guarantee. According to a report published by blockchain analytics firm Elliptic, merchants on the marketplace have been found to peddle technology, personal data, and money laundering
Source: TheHackerNews
May 14th, 2025 (16 days ago)
North Korea ramps up cyberspying in Ukraine to assess war risk
Description: The state-backed North Korean threat group Konni (Opal Sleet, TA406) was observed targeting Ukrainian government entities in intelligence collection operations. [...]
Source: BleepingComputer
May 13th, 2025 (17 days ago)
North Korean hackers target Ukrainian government in new espionage campaign
Description: The latest wave of activity in Ukraine suggests that Pyongyang is seeking to “better understand the appetite to continue fighting against the Russian invasion” and “the medium-term outlook of the conflict,” according to the latest report by cybersecurity firm Proofpoint.
Source: The Record
May 13th, 2025 (17 days ago)
North Korean Konni APT Targets Ukraine with Malware to track Russian Invasion Progress
Description: The North Korea-linked threat actor known as Konni APT has been attributed to a phishing campaign targeting government entities in Ukraine, indicating the threat actor's targeting beyond Russia. Enterprise security firm Proofpoint said the end goal of the campaign is to collect intelligence on the "trajectory of the Russian invasion." "The group's interest in Ukraine follows historical targeting
Source: TheHackerNews
May 13th, 2025 (17 days ago)
North Korea's TA406 Targets Ukraine for Intel
Description: The threat group's goal is to help Pyongyang assess risk to its troops deployed in Ukraine and to figure out if Moscow might want more.
Source: Dark Reading
May 13th, 2025 (17 days ago)
OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities
Description: The North Korean threat actors behind the Contagious Interview campaign have been observed using updated versions of a cross-platform malware called OtterCookie with capabilities to steal credentials from web browsers and other files. NTT Security Holdings, which detailed the new findings, said the attackers have "actively and continuously" updated the malware, introducing versions v3 and v4 in
Source: TheHackerNews
May 9th, 2025 (21 days ago)
US wants to cut off key player in Southeast Asian cybercrime industry
Description: The Treasury Department issued the proposed rulemaking Thursday, stating that Huione Group has helped launder funds from North Korean state-backed cybercrime operations and investment scams originating in Southeast Asia.
Source: The Record
May 2nd, 2025 (28 days ago)
North Korean IT worker scam is now a threat to all companies, cybersecurity experts say
Description: One cybersecurity expert even said he recently found evidence that a U.S. political campaign in Oregon hired a North Korean IT worker.
Source: The Record
May 1st, 2025 (29 days ago)
Maryland man pleads guilty to outsourcing US gov work to North Korean dev in China
Source: TheRegister
April 30th, 2025 (30 days ago)