#LazarusHackers

Lazarus hackers breached dev repeatedly to deploy SIGNBT malware

by

October 27, 2023 at 12:52PM The North Korean Lazarus hacking group repeatedly targeted a software vendor, breaching their system multiple times despite patches and warnings. Kaspersky discovered the attack, which was part of a broader campaign that involved Lazarus targeting various software vendors. The hackers used the SIGNBT malware and LPEClient info-stealer to gain access … Read more

North Korean hackers exploit critical TeamCity flaw to breach networks

by

October 18, 2023 at 06:34PM Microsoft reports that the North Korean hacking groups Lazarus and Andariel are exploiting a vulnerability in TeamCity servers, CVE-2023-42793, to deploy backdoor malware. These attacks are likely aimed at conducting software supply chain attacks. Once the server is breached, the hackers use different attack chains to gain persistence on the … Read more