North Korean hackers return, goal infosec researchers in new operation

North Korean hackers return, target infosec researchers in new operation

In January, Google and Microsoft outed what they stated was North Korean government-sponsored hackers focusing on safety researchers. The hackers spent weeks utilizing pretend Twitter profiles—purportedly belonging to vulnerability researchers—earlier than unleashing an Web Explorer zero-day and a malicious Visible Studio Undertaking, each of which put in customized malware.

Now the identical hackers are again, a Google researcher said on Wednesday, this time with a brand new batch of social media profiles and a pretend firm that claims to supply offensive safety providers, together with penetration testing, software program safety assessments, and software program exploits.

As soon as extra with feeling

The homepage for the pretend firm is modern and appears no totally different from numerous actual safety firms everywhere in the world:

The hackers additionally cooked up greater than a dozen new social media profiles that presupposed to belong to recruiters for safety firms, safety researchers, and varied staff of SecuriElite, the pretend safety firm. The work that went into creating the profiles was pretty spectacular.

Subsequent-level trolling

My favourite is that this Twitter profile of @seb_lazar, which presumably corresponds to Sebastian Lazarescue, one of many pretend researchers working for the pretend SecuriElite:

Safety individuals all know that Lazarus is the identify used to establish hackers backed by the North Korean authorities. Creating detailed Twitter and LinkedIn profiles for a researcher along with your pretend safety firm, naming him Sebastian Lazarescue, and having him retweeting a lot of top-flight safety researchers—some who work for Google—is next-level trolling.

Adam Weidemann, a researcher with Google’s Menace Evaluation Group, cautions that the hackers’ previous success in luring researchers to web sites internet hosting an IE zero-day means the group ought to be taken critically.

“Primarily based on their exercise, we proceed to imagine that these actors are harmful, and sure have extra 0-days,” he wrote.

Recent Articles

Is it too late for the Google Pixel Watch? | Pocketnow

The alleged Google Pixel Watch recaptured the headlines yesterday, after a moderately lengthy hiatus. Keep in mind, a smartwatch made by Google has been...

Prime Cellular Video games Worldwide for March 2021 by Downloads

Join Clash 3D from Supersonic Studios was essentially the most downloaded cell recreation worldwide for March 2021 with 27.6 million...

Swivel, Pivot, and Tilt This Asus 27″ Monitor as A lot as You Need for 19% Off

Best Gaming DealsBest Gaming DealsThe most effective offers on video games, consoles, and gaming equipment from across the internet, up to date each day.ASUS...

Related Stories

Stay on op - Ge the daily news in your inbox