Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft: North Korean hackers join Qilin ransomware gang
Description: Microsoft says a North Korean hacking group tracked as Moonstone Sleet has deployed Qilin ransomware payloads in a limited number of attacks. [...]
Source: BleepingComputer
March 7th, 2025 (about 1 month ago)
Safe{Wallet} Confirms North Korean TraderTraitor Hackers Stole $1.5 Billion in Bybit Heist
Description: Safe{Wallet} has revealed that the cybersecurity incident that led to the Bybit $1.5 billion crypto heist is a "highly sophisticated, state-sponsored attack," stating the North Korean threat actors behind the hack took steps to erase traces of the malicious activity in an effort to hamper investigation efforts. The multi-signature (multisig) platform, which has roped in Google Cloud Mandiant to
Source: TheHackerNews
March 7th, 2025 (about 1 month ago)
North Korea's Latest 'IT Worker' Scheme Seeks Nuclear Funds
Description: Fraudulent IT workers are looking for engineering and developer positions in the US and Japan, and this time it's not about espionage.
Source: Dark Reading
March 4th, 2025 (about 1 month ago)
Apple’s Rosetta 2 Exploited for Bypassing macOS Security Protections
Description: Hackers have been exploiting a significant security loophole in Apple’s Rosetta 2—the translation technology that allows Intel-based apps to run on Apple Silicon. According to Google’s Mandiant researchers, North Korean hacking groups are deliberately using x86-64 (Intel) malware instead of native ARM64 (Apple Silicon) versions because it bypasses stricter security measures enforced on ARM64 apps. … The post Apple’s Rosetta 2 Exploited for Bypassing macOS Security Protections appeared first on CyberInsider.
Source: CyberInsider
March 4th, 2025 (about 1 month ago)
FBI officially fingers North Korea for $1.5B Bybit crypto-burglary
Source: TheRegister
February 27th, 2025 (about 2 months ago)
Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers
Description: The U.S. Federal Bureau of Investigation (FBI) formally linked the record-breaking $1.5 billion Bybit hack to North Korean threat actors, as the company's CEO Ben Zhou declared a "war against Lazarus." The agency said the Democratic People's Republic of Korea (North Korea) was responsible for the theft of the virtual assets from the cryptocurrency exchange, attributing it to a specific cluster
Source: TheHackerNews
February 27th, 2025 (about 2 months ago)
FBI confirms Lazarus hackers were behind $1.5B Bybit crypto heist
Description: FBI has confirmed that North Korean hackers stole $1.5 billion from cryptocurrency exchange Bybit on Friday in the largest crypto heist recorded until now. [...]
Source: BleepingComputer
February 27th, 2025 (about 2 months ago)
Bybit declares war on North Korea's Lazarus crime-ring to regain $1.5B stolen from wallet
Source: TheRegister
February 26th, 2025 (about 2 months ago)
Lazarus hacked Bybit via a breached Safe{Wallet} developer machine
Description: ​Forensic investigators have found that North Korean Lazarus hackers stole $1.5 billion from Bybit after hacking a developer's device at the multisig wallet platform Safe{Wallet}. [...]
Source: BleepingComputer
February 26th, 2025 (about 2 months ago)
RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector
Description: Koi Stealer and RustDoor malware were used in a campaign linked to North Korea. This activity targeted crypto wallet owners. The post RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector appeared first on Unit 42.
Source: Palo Alto Unit42
February 26th, 2025 (about 2 months ago)