#NorthKoreanCyberThreat

KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack

by

July 24, 2024 at 01:36PM KnowBe4 hired a North Korean state actor posing as a Principal Software Engineer. The company stopped the attempted installation of information-stealing software. The actor evaded background checks and used AI tools to create a fake identity. KnowBe4 detected the threat through its security product and now recommends isolating new hires’ … Read more

Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware

by

March 5, 2024 at 12:04PM North Korean threat actors have exploited ConnectWise ScreenConnect’s security flaws to launch TODDLERSHARK malware, overlapping with known Kimsuky malware BabyShark and ReconShark. Exploiting exposed setup wizard, threat actors execute VB-based malware, gaining ‘hands on keyboard’ access. Toddlershark exhibits polymorphic behavior and is used for reconnaissance. NIS accuses North Korea of … Read more