-
AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
Original release date: February 17, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts...- News
- Thread
- applejeus apt actors cisa cryptocurrency cryptocurrency theft cyber actors cybersecurity exfiltration fbi financial sector hidden cobra malicious software malware mitigation mitre att&ck north korea phishing spear phishing threat mitigation
- Replies: 0
- Forum: Security Alerts
-
AA20-301A: North Korean Advanced Persistent Threat Focus: Kimsuky
Original release date: October 27, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques. This joint cybersecurity advisory...- News
- Thread
- apt command and control credential harvesting cyber threats cybersecurity data exfiltration espionage hidden cobra incident response keylogger kimsuky malware mitre att&ck north korea phishing security best practices spear phishing tactics threat intelligence
- Replies: 0
- Forum: Security Alerts
-
AA20-239A: FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks
Original release date: August 26, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. This joint advisory is the result of analytic efforts among...- News
- Thread
- apt38 atm cash-outs bank heists beagleboyz cryptocurrency cyber threats cybersecurity data security exfiltration financial services hidden cobra incident response international fraud iso 8583 malware mitre att&ck north korea operational security swift fraud threat detection
- Replies: 0
- Forum: Security Alerts
-
AA20-106A: Guidance on the North Korean Cyber Threat
Original release date: April 15, 2020 | Last revised: June 23, 2020 Summary The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international...- News
- Thread
- awareness critical infrastructure cryptojacking cyber threats cybercrime cybersecurity digital currency dprk espionage extortion financial crime government hidden cobra international cooperation malware mitigation network defense north korea ransomware sanctions
- Replies: 0
- Forum: Security Alerts
-
AA20-106A: Guidance on the North Korean Cyber Threat
Original release date: April 14, 2020 | Last revised: April 15, 2020 Summary The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international...- News
- Thread
- cryptojacking cyber operations cyber threats cybercrime cybersecurity digital currency dprk espionage extortion financial sector hidden cobra illicit activities information sharing infrastructure international cooperation malware north korea ransomware risk mitigation sanctions
- Replies: 0
- Forum: Security Alerts
-
TA18-275A: HIDDEN COBRA – FASTCash Campaign
Original release date: October 2, 2018 | Last revised: December 21, 2018 Systems Affected Retail Payment Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS), the Department of the Treasury (Treasury), and the...- News
- Thread
- access denied atm fraud banking cyberattack cybersecurity dhs fastcash fbi financial transactions hidden cobra incident response indicators of compromise iso 8583 malware mitigation network exploitation payment methods security best practices spear phishing threat intelligence
- Replies: 0
- Forum: Security Alerts
-
TA18-275A: HIDDEN COBRA – FASTCash Campaign
Original release date: October 02, 2018 Systems Affected Retail Payment Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS), the Department of the Treasury (Treasury), and the Federal Bureau of Investigation...- News
- Thread
- atm banking cyber threats cybersecurity dhs fastcash fbi fraud hidden cobra incident response iso 8583 malicious software malware network defense payment methods risk mitigation spyware technical alert treasury vulnerability
- Replies: 0
- Forum: Security Alerts
-
TA18-149A: HIDDEN COBRA – Joanap Backdoor Trojan and Brambul Server Message Block Worm
Original release date: May 29, 2018 Systems Affected Network systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI...- News
- Thread
- brambul brute force cybersecurity dhs fbi hidden cobra indicators of compromise intrusion detection ip address joanap malware mitigation network defense network security remote access security server message block trojan worm
- Replies: 0
- Forum: Security Alerts
-
TA17-318B: HIDDEN COBRA – North Korean Trojan: Volgmer
Original release date: November 14, 2017 Systems Affected Network systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS...- News
- Thread
- backdoor trojan botnet cybersecurity dhs fbi hidden cobra incident response indicators of compromise ip address malicious software malware mitigation network defense network security north korea spear phishing trojan user agent volgmer
- Replies: 0
- Forum: Security Alerts
-
TA17-318A: HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL
Original release date: November 14, 2017 Systems Affected Network systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS...- News
- Thread
- command and control cyber threat reporting cybersecurity dhs fallchill fbi hidden cobra incident response indicators of compromise ip address malware mitigation network defense network security north korea remote administration tool system information tls
- Replies: 0
- Forum: Security Alerts
-
TA17-164A: HIDDEN COBRA – North Korea’s DDoS Botnet Infrastructure
Original release date: June 13, 2017 | Last revised: July 07, 2017 Systems Affected Networked Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert...- News
- Thread
- botnet cyber threats cybersecurity ddos deltacharlie dhs fbi hidden cobra incident response indicators of compromise ip address lazarus malware mitigation network security north korea patch management security advisory threat intelligence vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
TA17-164A: HIDDEN COBRA – North Korea’s DDoS Botnet Infrastructure
Original release date: June 13, 2017 Systems Affected Networked Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert provides technical details on the...- News
- Thread
- adversaries analysis botnet cve cyber operations cybersecurity data exfiltration ddos deltacharlie dhs fbi hidden cobra incident response malware mitigation network security north korea security best practices threat detection vulnerabilities
- Replies: 0
- Forum: Security Alerts