North Korean hackers ScarCruft exploit Zoho WorkDrive & USB malware to breach air-gapped networks. Stay vigilant! #CyberSecurity #ScarCruft #ZohoWorkDrive #USBMalware #AirGappedNetworks Link: thedailytechfeed.com/scarcruft-ex...
"Scarcruft’s ROKRAT Malware: Recent Changes" published by S2W. #RokRAT, #ScarCruft, #DPRK, #CTI https://s2w.inc/en/resource/detail/1011
"스카크러프트 악성코드(Scarcruft ROKRAT): 새로운 유포 방식의 출현" published by S2W. #RokRAT, #ScarCruft, #DPRK, #CTI https://s2w.inc/ko/resource/detail/1011
"바로가기 악성파일의 구조를 활용한 공격자 프로파일링" published by Plainbit. #Kimsuky, #Konni, #LNK, #ScarCruft, #DPRK, #CTI plainbit.co.kr/kr/insight/tech_hub
"국가배후 해킹조직의 LNK 악성코드 위협 분석 (Campaign Dark Prism)" published by FSI. #DarkPrism, #LNK, #Whitepaper, #Kimsuky, #Konni, #ScarCruft, #DPRK, #CTI www.fsec.or.kr/bbs/detail
ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics reconbee.com/scarcruft-us...
#ScarCruft #RokRAT #malware #malwareattack #HanKooKphantom #southkorean #cyberattack
North Korea-linked ScarCruft is using spear-phishing with RokRAT malware to spy on academics, dubbed the #HanKookPhantom campaign.
Read: hackread.com/north-korea-...
#CyberSecurity #NorthKorea #ScarCruft #RokRAT #Malware
APT37 colpisce la Corea del Sud con HanKook Phantom: LNK fileless, RokRAT, esche locali e esfiltrazione cloud stealth.
#apt37 #cloud #CoreadelNord #CoreadelSud #fileless #HanKookPhantom #phishing #RokRAT #ScarCruft
www.matricedigitale.it/2025/09/01/a...
North Korean elite hackers from #ScarCruft group have moved from spying to ransomware, using VCD malware in phishing attacks, targeting #SouthKorea with advanced tools.
Read: hackread.com/north-korean...
#CyberSecurity #NorthKorea #VCDRansomware #Malware #Ransowmare
#Google_Play に #マルウェア 配布する #北朝鮮 の不正なアプリ5つ、確認を - マイナビニュース
Lookoutは3月12日 (米国時間)、 北朝鮮の国家支援を受けているとみられる脅威アクター 「 #APT37 (別名 : #ScarCruft 、 #RedEyes )」が #Android 向けマルウェア「 #KoSpy 」を ...
news.mynavi.jp/techplus/art...
North Korean Hackers Distributed Android Spyware via Google Play The North Korea-linked APT37 has...
www.securityweek.com/north-korean-hackers-dis...
#Mobile #& #Wireless #Uncategorized #APT #KoSpy #North #Korea #ScarCruft #spyware
Event Attributes
Hello, I wrote a new blog analyzing a sample from a recent APT37 phishing attack.
zw01f.github.io/malware%20an...
Would love to hear your feedback!
#RokRat #APT37 #ScarCruft #malware #APT #MalwareAnalysis #Infosec
#APT #APT37 #RicochetChollima #ScarCruft #RokRat #threat #malware
📍🇰🇵
💥🇰🇷🌏
⛓️#Phishing > RAR|ZIP > #LNK extract .bat/PS/DOCs > #PS > #BAT execution > #PS decrypt #RokRat SC > Load + RUN #RAT> #C2
🔗360 Advanced Threat Research: mp.weixin.qq.com/s?__biz=MzUy...
"An exploratory analysis of the DPRK cyber threat landscape using publicly available reports" published by lazarusholic. #Andariel, #BlueNoroff, #Kimsuky, #Konni, #Lazarus, #ScarCruft, #DPRK, #CTI link.springer.com/article/10.1007/s10207-0...
Ziel sind vor allem südkoreanische Menschenrechtsaktivisten und politische Einrichtungen in Europa. #CyberSecurity #ScarCruft #RokRAT #ZeroDay
North Korean mashing group ScarCruft launched an attack in May that leveraged an Internet Explorer zero-day flaw to infect targets with malware and exfiltrate data
#Microsoft #InternetExplorer #zeroday #northkorea #ScarCruft #malware #security #potatosecurity #infosec #mashers #mashing #mashed
North Korean hacking group ScarCruft launched an attack in May that leveraged an Internet Explorer zero-day flaw to infect targets with malware and exfiltrate data
#Microsoft #InternetExplorer #zeroday #northkorea #ScarCruft #malware #security #cybersecurity #infosec #hackers #hacking #hacked
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware
thehackernews.com/2024/10/nort...
#Infosec #Security #Cybersecurity #CeptBiro #NorthKorean #ScarCruft #Exploits #Windows #ZeroDay #RokRAT #Malware
