Lightnews — Scholar-powered news

lazarusholic @lazarusholic.bsky.social · 1d

"국정원, 온나라시스템 등에 대한 정교한 위장침투에 대응" published by KRNIS. #News, #APTDown, #DPRK, #CTI https://www.nis.go.kr/CM/1_4/view.do?seq=376

lazarusholic @lazarusholic.bsky.social · 2d

"Microsoft Digital Defense Report 2025" published by Microsoft. #Trend, #DPRK, #CTI https://www.microsoft.com/en-us/security/security-insider/threat-landscape/microsoft-digital-defense-report-2025

lazarusholic @lazarusholic.bsky.social · 2d

"WaterPlumが使用するマルウェアOtterCandyについて" published by NTTSecurity. #ContagiousInterview, #OtterCandy, #WaterPlum, #DPRK, #CTI https://jp.security.ntt/insights_resources/tech_blog/ottercandy_malware_j/

lazarusholic @lazarusholic.bsky.social · 2d

"OtterCandy, malware used by WaterPlum" published by NTTSecurity. #ContagiousInterview, #OtterCandy, #WaterPlum, #DPRK, #CTI https://jp.security.ntt/insights_resources/tech_blog/ottercandy_malware_e/

lazarusholic @lazarusholic.bsky.social · 2d

"2025년 9월 APT 공격 동향 보고서(국내)" published by Ahnlab. #LNK, #Phishing, #Trend, #DPRK, #CTI https://asec.ahnlab.com/ko/90599/

lazarusholic @lazarusholic.bsky.social · 3d

"DPRK Adopts EtherHiding: Nation-State Malware Hiding on Blockchains" published by Google. #EtherHiding, #JADESNOW, #UNC5342, #DPRK, #CTI https://cloud.google.com/blog/topics/threat-intelligence/dprk-adopts-etherhiding

lazarusholic @lazarusholic.bsky.social · 3d

"BeaverTail and OtterCookie evolve with a new Javascript module" published by CiscoTalos. #BeaverTail, #OtterCookie, #DPRK, #CTI https://blog.talosintelligence.com/beavertail-and-ottercookie/

lazarusholic @lazarusholic.bsky.social · 4d

"The Global Threat of DPRK IT Workers" published by 38North. #ITWorker, #News, #DPRK, #CTI https://www.38north.org/2025/10/the-global-threat-of-dprk-it-workers/

lazarusholic @lazarusholic.bsky.social · 5d

"북한 김수키(Kimsuky)에서 만든 악성코드-미신고 자금출처 해명 자료 제출 안내(부가치세법 시행 규칙)" published by Sakai. #Kimsuky, #LNK, #DPRK, #CTI https://wezard4u.tistory.com/429619

lazarusholic @lazarusholic.bsky.social · 6d

"DPRK SANCTIONS VIOLATIONS IN CYBER OPERATIONS POST UN PANEL DEMISE" published by Cyfirma. #Bybit, #DMM, #Trend, #ITWorker, #WazirX, #DPRK, #CTI https://www.cyfirma.com/research/dprk-sanctions-violations-in-cyber-operations-post-un-panel-demise/

lazarusholic @lazarusholic.bsky.social · 6d

"Hidden Threat: North Korean IT Workers Exposed" published by KELA. #ITWorker, #DPRK, #CTI https://www.kelacyber.com/blog/espionage-exposed-inside-a-north-korean-remote-worker-network/

lazarusholic @lazarusholic.bsky.social · 6d

"ENISA Threat Landscape 2025" published by ENISA. #Trend, #FamousChollima, #Lazarus, #DPRK, #CTI https://www.enisa.europa.eu/publications/enisa-threat-landscape-2025

lazarusholic @lazarusholic.bsky.social · 8d

"North Korea’s Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads" published by Socket. #ContagiousInterview, #NPM, #DPRK, #CTI https://socket.dev/blog/north-korea-contagious-interview-campaign-338-malicious-npm-packages

lazarusholic @lazarusholic.bsky.social · 8d

"Disrupting malicious uses of AI: October 2025" published by OpenAI. #XenoRAT, #Phishing, #Trend, #DPRK, #CTI https://openai.com/global-affairs/disrupting-malicious-uses-of-ai-october-2025/

1

lazarusholic @lazarusholic.bsky.social · 11d

"North Korea's crypto hackers have stolen over $2 billion in 2025" published by Elliptic. #Trend, #DPRK, #CTI https://www.elliptic.co/blog/north-korea-linked-hackers-have-already-stolen-over-2-billion-in-2025

lazarusholic @lazarusholic.bsky.social · 11d

"North Korean agents pretending to be IT guys have funneled up to $1 billion into Kim Jong Un's nuclear program" published by Fortune. #ITWorker, #News, #DPRK, #CTI https://fortune.com/article/north-korean-it-workers-kim-jong-un-cybersecurity-nuclear-program-america/

lazarusholic @lazarusholic.bsky.social · 15d

"김수키(Kimsuky) 서울대 국제문제연구소 사칭 악성코드-글로벌 복합 위기 한국의 안보전략.lnk(2025.9.28)" published by Sakai. #Kimsuky, #LNK, #DPRK, #CTI https://wezard4u.tistory.com/429610

lazarusholic @lazarusholic.bsky.social · 15d

"SBI Crypto" published by Rekt. #SBICrypto, #DPRK, #CTI https://rekt.news/sbi-crypto-rekt

lazarusholic @lazarusholic.bsky.social · 15d

"North Korea IT Workers: Inside the DPRK’s Crypto Laundering Network" published by Chainalysis. #ITWorker, #MoneyLaundering, #DPRK, #CTI https://www.chainalysis.com/blog/dprk-it-workers-north-korea-crypto-laundering-networks/

lazarusholic @lazarusholic.bsky.social · 17d

"Larva-25010 - APT Down 공격자 PC 분석" published by Ahnlab. #APTDown, #Larva-25010, #DPRK, #CTI https://asec.ahnlab.com/ko/90408/

lazarusholic @lazarusholic.bsky.social · 17d

"On September 24, 2025 addresses linked to SBI Crypto saw ~$21M in suspicious outflows" published by ZachXBT. #SBICrypto, #DPRK, #CTI https://t.me/investigations/278

lazarusholic @lazarusholic.bsky.social · 18d

"Spotted a Weird Github Organization? It Might be DPRK!" published by Ketman. #ITWorker, #DPRK, #CTI https://www.ketman.org/dprk-it-workers-github-organizations.html

2

lazarusholic @lazarusholic.bsky.social · 18d

"In July 2025, BigONE was the victim of a supply chain attack" published by Whitestream. #BigONE, #DPRK, #CTI https://archive.is/hXLSw

1

lazarusholic @lazarusholic.bsky.social · 18d

"sandfly-kernel-module-decloak" published by SandflySecurity. #APTDown, #Kimsuky, #DPRK, #CTI https://github.com/sandflysecurity/sandfly-kernel-module-decloak

lazarusholic @lazarusholic.bsky.social · 18d

"North Korea’s IT Workers expand beyond US big tech" published by Okta. #ITWorker, #DPRK, #CTI https://www.okta.com/newsroom/articles/north-korea-s-it-workers-expand-beyond-us-big-tech/