Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

North Korean Hackers Use AI to Infiltrate Global Companies

2025-08-05
North Korean Hackers Use AI to Infiltrate Global Companies

CrowdStrike's latest report reveals that the North Korean hacking group, Famous Chollima, is using AI to create fake identities and infiltrate companies worldwide, taking technical jobs to steal intelligence. Over the past year, the group launched an attack almost daily, with activity increasing by 220%. They leverage AI for resume generation, fake identities, and even to complete technical tasks during interviews and on the job. This highlights the double-edged sword of AI in cybersecurity and underscores the need for stronger corporate security measures.

Read more
(cyberscoop.com)
Tech AI security threat

Lazarus Group Plants Six Malicious Packages on npm Registry

2025-03-15
Lazarus Group Plants Six Malicious Packages on npm Registry

The Lazarus Group, a North Korea-linked hacking group, has planted six malicious npm packages containing BeaverTail malware. These packages, downloaded over 330 times, mimic legitimate libraries using typosquatting to deceive developers. The malware installs backdoors, steals credentials, and targets cryptocurrency wallets (Solana and Exodus). Five of the malicious packages even had accompanying GitHub repositories, bolstering their legitimacy. One package, 'is-buffer-validator', directly mirrors a legitimate package, highlighting Lazarus's awareness of previous research. This incident underscores the ongoing threat of software supply chain attacks and the sophistication of Lazarus's tactics, particularly in the wake of their recent record-breaking $1.46 billion cryptocurrency heist.

Read more
(cyberscoop.com)
Tech