A week in security (April 18 – 24)

The most important and interesting stories in security from the last seven days

Read more

North Korean Lazarus APT group targets blockchain tech companies

The Lazarus Group is targeting companies involved in blockchain technology.

Read more

North Korea’s Lazarus APT leverages Windows Update client, GitHub in latest campaign

How one of North Korea’s most sophisticated APTs tries to avoid detection by using legitimate tools during its attacks.

Read more

Crimea “manifesto” deploys VBA Rat using double attack vectors

A Crimean “manifesto” hides an attack that infects victims with a VBA Rat, which we also found being deployed through a separate exploit.

Read more

Lazarus APT conceals malicious code within BMP image to drop its RAT

The North Korean APT uses a clever technique to bypass security products by embedding one of its payload as a BMP image.

Read more

New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app

The Lazarus group improves their toolset with a new RAT specifically designed for the Mac.

Read more

The Advanced Persistent Threat files: Lazarus Group

Lazarus Group, the threat actors likely behind the Sony breach and WannaCry outbreak, are in the news again. Here’s what you need to know about this North Korean organization, and what you should do to protect against such nation-state attacks.

Read more

Ryuk ransomware attacks businesses over the holidays

Over the holiday, a little-known ransomware family called Ryuk caused serious damage to numerous organizations. The attacks leave a lot of questions unanswered. What do we know so far?

Read more

Select your language