Security news aggregator

Latest coverage for North Korea

Explore the latest updates on North Korea's information security actions, including cyber threats, state-sponsored hacking, and digital defense strategies.

8 headlines in this view

North Korea is a country often associated with aggressive cyber operations and state-sponsored hacking. In the realm of information security, North Korea is known for its advanced persistent threats (APTs) and its involvement in various cyber espionage and cyber warfare activities. The nation's hackers are implicated in attacks aimed at stealing funds, intellectual property, and sensitive information from governments, corporations, and individuals.

The significance of North Korea in cyber security discussions stems from its notorious cyber attacks that include the deployment of ransomware, such as the WannaCry incident, bank heists like the Bangladesh Bank cyber theft, and the infiltration of entertainment companies like the hack on Sony Pictures. The country's persistent cyber threats challenge global security, demanding pervasive vigilance, and sophisticated defense mechanisms from organizations around the world.

Showing 8 most recent headlines Filtered view

Bank Info Security 5 months, 2 weeks ago

Nation-State and Cybercrime Exploits Tied to React2Shell

2 More Vulnerabilities Need Patching in React Server Components, Warns VercelMass exploitation of the "React2Shell" - CVE-2025-55182 - vulnerability remains underway by nation-state hackers tied to China, North Korea and Iran, as well as financially motivated cybercriminals running everything from cryptomining malware to DDoS services, security experts warn.

More from Bank Info Security 16 Dec 2025, 6:30 a.m. Actively exploited CVE-2025-55182 CVE China Cryptocurrency DoS Exploit Iran Malware Nation State North Korea Vulnerability Warning

Bleeping Computer 1 year, 7 months ago

Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day

The North Korean Lazarus hacking group exploited a Google Chrome zero-day tracked as CVE-2024-4947 through a fake decentralized finance (DeFi) game targeting individuals in the cryptocurrency space. [...]

More from Bleeping Computer 24 Oct 2024, 7:03 a.m. Actively exploited CVE-2024-4947 0-Day Aerospace CVE Chrome Cryptocurrency Exploit Fake Finance Google Hacking North Korea

Bleeping Computer 1 year, 9 months ago

North Korean hackers exploit Chrome zero-day to deploy rootkit

North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit. [...]

More from Bleeping Computer 31 Aug 2024, 5:04 a.m. Actively exploited CVE-2024-7971 0-Day CVE Chrome Exploit Google Microsoft North Korea Patch Rootkit

Bleeping Computer 2 years, 2 months ago

ScreenConnect flaws exploited to drop new ToddlerShark malware

The North Korean APT hacking group Kimsuky is exploiting ScreenConnect flaws, particularly CVE-2024-1708 and CVE-2024-1709, to infect targets with a new malware variant dubbed ToddlerShark. [...]

More from Bleeping Computer 5 Mar 2024, 11:14 a.m. Actively exploited CVE-2024-1708 CVE-2024-1709 Advanced Persistent Threat CVE Flaw Hacking Malware North Korea

Bleeping Computer 2 years, 2 months ago

ScreenConnect flaws exploited to drop new ToddleShark malware

The North Korean APT hacking group Kimsuky is exploiting ScreenConnect flaws, particularly CVE-2024-1708 and CVE-2024-1709, to infect targets with a new malware variant dubbed ToddleShark. [...]

More from Bleeping Computer 5 Mar 2024, 11:14 a.m. Actively exploited CVE-2024-1708 CVE-2024-1709 Advanced Persistent Threat CVE Flaw Hacking Malware North Korea

Bleeping Computer 2 years, 5 months ago

Lazarus hackers drop new RAT malware using 2-year-old Log4j bug

The notorious North Korean hacking group known as Lazarus continues to exploit CVE-2021-44228, aka "Log4Shell," this time to deploy three previously unseen malware families written in DLang. [...]

More from Bleeping Computer 12 Dec 2023, 10:25 a.m. Actively exploited CVE-2021-44228 CVE Exploit Hacking Log4Shell Log4j Malware North Korea Remote Access Trojan

Bleeping Computer 2 years, 7 months ago

North Korean hackers exploit critical TeamCity flaw to breach networks

Microsoft says that the North Korean Lazarus and Andariel hacking groups are exploiting the CVE-2023-42793 flaw in TeamCity servers to deploy backdoor malware, likely to conduct software supply chain attacks. [...]

More from Bleeping Computer 19 Oct 2023, 11:33 a.m. Actively exploited CVE-2023-42793 Backdoor Breach CVE Critical Exploit Flaw Hacking Malware Microsoft North Korea Supply Chain

Bleeping Computer 2 years, 9 months ago

Hackers use public ManageEngine exploit to breach internet org

The North Korean state-backed hacker group tracked as Lazarus has been exploiting a critical vulnerability (CVE-2022-47966) in Zoho's ManageEngine ServiceDesk to compromise an internet backbone infrastructure provider and healthcare organizations. [...]

More from Bleeping Computer 25 Aug 2023, 12:31 a.m. Actively exploited CVE-2022-47966 Breach CVE Compromise Critical Critical Infrastructure Exploit Healthcare North Korea Vulnerability

Latest coverage for North Korea

Refine the feed

Tag briefing

Volume over time

Fresh headlines available