You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
north korea
About this tag
Discussions on WindowsForum.com about North Korea focus on state-sponsored cyber threats, including advanced persistent threat groups like Lazarus, Kimsuky, and Moonstone Sleet. Topics cover ransomware targeting Windows systems, cryptocurrency malware such as AppleJeus, and FASTCash 2.0 for bank robberies. Recent threads highlight North Korean remote IT workers using AI for espionage and supply chain attacks via malicious open-source software. Users share analysis of tactics, techniques, and procedures (TTPs) from joint advisories by CISA, FBI, and Treasury, along with defense strategies for enterprises. The tag serves as a resource for understanding North Korea's evolving cyber operations and mitigating associated risks.
North Korea’s infamous Lazarus Group has returned to the international cyber stage with worrying new tactics. In a move that marks a tactical shift from sheer disruption to subtle infiltration, recent research reveals the group is seeding malware-laden open source software, bringing fresh...
North Korean remote IT workers, operating under what Microsoft Threat Intelligence now tracks as Jasper Sleet (previously Storm-0287), exemplify how state-sponsored cyber actors are adapting and evolving their methods to sustain financial, intelligence, and geopolitical objectives. Since 2024...
New North Korean "Moonstone Sleet" Ransomware: A Sophisticated Threat Targeting Windows Systems
Cybersecurity researchers have uncovered an advanced ransomware campaign orchestrated by a North Korean threat actor known as Moonstone Sleet. This campaign showcases creative tactics and a deep...
Original release date: February 17, 2021
Summary
This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques.
This joint advisory is the result of analytic efforts...
Original release date: October 27, 2020
Summary
This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques.
This joint cybersecurity advisory...
Original release date: August 26, 2020
Summary
This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques.
This joint advisory is the result of analytic efforts among...
Original release date: April 15, 2020 | Last revised: June 23, 2020
Summary
The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international...
Original release date: April 14, 2020 | Last revised: April 15, 2020
Summary
The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international...