lazarusholic
@lazarusholic.bsky.social
a big fan of lazarus. https://lazarus.day
"Inside the GitHub Infrastructure Powering North Korea’s Contagious Interview npm Attacks" published by Socket. #ContagiousInterview, #NPM, #OtterCookie, #DPRK, #CTI https://socket.dev/blog/north-korea-contagious-interview-npm-attacks
November 27, 2025 at 1:30 PM
"Inside the GitHub Infrastructure Powering North Korea’s Contagious Interview npm Attacks" published by Socket. #ContagiousInterview, #NPM, #OtterCookie, #DPRK, #CTI https://socket.dev/blog/north-korea-contagious-interview-npm-attacks
"FlexibleFerret: macOS Malware Deploys in Fake Job Scams" published by Jamf. #FlexibleFerret, #ContagiousInterview, #DPRK, #CTI https://www.jamf.com/blog/flexibleferret-malware-continues-to-adapt/
November 25, 2025 at 11:30 PM
"FlexibleFerret: macOS Malware Deploys in Fake Job Scams" published by Jamf. #FlexibleFerret, #ContagiousInterview, #DPRK, #CTI https://www.jamf.com/blog/flexibleferret-malware-continues-to-adapt/
"A Tsunami Sweeping the Cyber Battlefield Analysis of SectorA01’s Hacking Activities" published by NSHC. #SectorA01, #Tsunami, #DPRK, #CTI https://medium.com/@nshcthreatrecon/a-tsunami-sweeping-the-cyber-battlefield-analysis-of-sectora01s-hacking-activities-e4d006baae2f
November 25, 2025 at 1:30 PM
"A Tsunami Sweeping the Cyber Battlefield Analysis of SectorA01’s Hacking Activities" published by NSHC. #SectorA01, #Tsunami, #DPRK, #CTI https://medium.com/@nshcthreatrecon/a-tsunami-sweeping-the-cyber-battlefield-analysis-of-sectora01s-hacking-activities-e4d006baae2f
"Alliances of convenience: How APTs are beginning to work together" published by GenDigital. #InvisibleFerret, #Lazarus, #DPRK, #CTI https://www.gendigital.com/blog/insights/research/apt-cyber-alliances-2025
November 25, 2025 at 1:30 PM
"Alliances of convenience: How APTs are beginning to work together" published by GenDigital. #InvisibleFerret, #Lazarus, #DPRK, #CTI https://www.gendigital.com/blog/insights/research/apt-cyber-alliances-2025
"DPRK Contagious Interview Lure - Go Backdoor & Swift App" published by L0Psec. #ContagiousInterview, #Youtube, #DPRK, #CTI https://www.youtube.com/watch?v=VdW_e72cQw8
November 24, 2025 at 1:30 PM
"DPRK Contagious Interview Lure - Go Backdoor & Swift App" published by L0Psec. #ContagiousInterview, #Youtube, #DPRK, #CTI https://www.youtube.com/watch?v=VdW_e72cQw8
"More active DPRK macOS malware "Contagious Interview"" published by L0Psec. #ContagiousInterview, #DPRK, #CTI https://archive.md/GuCHv
November 23, 2025 at 1:30 PM
"More active DPRK macOS malware "Contagious Interview"" published by L0Psec. #ContagiousInterview, #DPRK, #CTI https://archive.md/GuCHv
"疑似APT-C-26(Lazarus)组织利用远程IT伪装部署监控程序的攻击行动分析" published by Qihoo360. #APT-C-26, #DPRK, #CTI https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247507568&idx=1&sn=af3ec0ff4685722c599eefa26925c842
November 23, 2025 at 1:30 PM
"疑似APT-C-26(Lazarus)组织利用远程IT伪装部署监控程序的攻击行动分析" published by Qihoo360. #APT-C-26, #DPRK, #CTI https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247507568&idx=1&sn=af3ec0ff4685722c599eefa26925c842
"Kimsuky's Ongoing Evolution of KimJongRAT and Expanding Threats" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/en/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
November 23, 2025 at 1:30 PM
"Kimsuky's Ongoing Evolution of KimJongRAT and Expanding Threats" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/en/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
"Kimsuky의 지속적인 KimJongRAT 변종 개발과 그 너머의 위협" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
November 23, 2025 at 1:30 PM
"Kimsuky의 지속적인 KimJongRAT 변종 개발과 그 너머의 위협" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
"Inside DPRK's Fake Job Platform Targeting U.S. AI Talent" published by Validin. #ClickFix, #ContagiousInterview, #DPRK, #CTI https://www.validin.com/blog/inside_dprk_fake_job_platform/
November 23, 2025 at 11:30 AM
"Inside DPRK's Fake Job Platform Targeting U.S. AI Talent" published by Validin. #ClickFix, #ContagiousInterview, #DPRK, #CTI https://www.validin.com/blog/inside_dprk_fake_job_platform/
"朝鲜APT双雄联手:Kimsuky 偷情报当 “眼睛”,Lazarus 盗币填 “钱袋”!" published by 紫队安全研究. #Kimsuky, #Lazarus, #DPRK, #CTI https://mp.weixin.qq.com/s/h4TCYVjdLALg4XfJr1jC0w
November 23, 2025 at 11:30 AM
"朝鲜APT双雄联手:Kimsuky 偷情报当 “眼睛”,Lazarus 盗币填 “钱袋”!" published by 紫队安全研究. #Kimsuky, #Lazarus, #DPRK, #CTI https://mp.weixin.qq.com/s/h4TCYVjdLALg4XfJr1jC0w
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
November 18, 2025 at 11:30 PM
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
November 18, 2025 at 11:30 PM
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
November 18, 2025 at 1:30 PM
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
November 18, 2025 at 1:30 PM
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
"Reframing Insights" published by ChollimaGroup. #ITWorker, #MoonstoneSleet, #DPRK, #CTI https://chollima-group.io/posts/reframing-insights-our-research-msmt
November 17, 2025 at 11:30 PM
"Reframing Insights" published by ChollimaGroup. #ITWorker, #MoonstoneSleet, #DPRK, #CTI https://chollima-group.io/posts/reframing-insights-our-research-msmt
"Crypto giants moved billions linked to money launderers, drug traffickers and North Korean hackers" published by ICIJ. #MoneyLaundering, #News, #DPRK, #CTI https://www.icij.org/investigations/coin-laundry/cryptocurrency-exchanges-binance-okx-money-laundering-crime/
November 17, 2025 at 3:30 PM
"Crypto giants moved billions linked to money launderers, drug traffickers and North Korean hackers" published by ICIJ. #MoneyLaundering, #News, #DPRK, #CTI https://www.icij.org/investigations/coin-laundry/cryptocurrency-exchanges-binance-okx-money-laundering-crime/
"The Deepfake Threat: Chollima APT Group Uses AI Filters to Infiltrate Crypto and Web3 Companies" published by SOCRadar. #Deepfake, #FamousChollima, #DPRK, #CTI https://socradar.io/deepfake-threat-chollima-apt-group-uses-ai-crypto/
November 17, 2025 at 1:30 PM
"The Deepfake Threat: Chollima APT Group Uses AI Filters to Infiltrate Crypto and Web3 Companies" published by SOCRadar. #Deepfake, #FamousChollima, #DPRK, #CTI https://socradar.io/deepfake-threat-chollima-apt-group-uses-ai-crypto/
"Ukrainian Pleads Guilty in DC in Laptop Farm Scheme That Generated Income for North Korean IT Workers" published by USJustice. #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/usao-dc/pr/ukrainian-pleads-guilty-dc-laptop-farm-scheme-generated-income-north-korean-it-workers
November 17, 2025 at 1:30 PM
"Ukrainian Pleads Guilty in DC in Laptop Farm Scheme That Generated Income for North Korean IT Workers" published by USJustice. #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/usao-dc/pr/ukrainian-pleads-guilty-dc-laptop-farm-scheme-generated-income-north-korean-it-workers
"Malops Challenge 8: Reversing APT 37’s RokRaT Loader" published by callyso0414. #APT37, #RokRAT, #DPRK, #CTI https://medium.com/@callyso0414/malops-challenge-9-reversing-apt-37s-rokrat-loader-7f7ad49e4662
November 17, 2025 at 1:30 PM
"Malops Challenge 8: Reversing APT 37’s RokRaT Loader" published by callyso0414. #APT37, #RokRAT, #DPRK, #CTI https://medium.com/@callyso0414/malops-challenge-9-reversing-apt-37s-rokrat-loader-7f7ad49e4662
"Tracking The Trackers Lessons From The Apt43 Kimsuky Takedown" published by Bloo. #APTDown, #Kimsuky, #DPRK, #CTI https://bloo.io/blog/tracking-the-trackers-lessons-from-the-apt43-kimsuky-takedown
November 17, 2025 at 1:30 PM
"Tracking The Trackers Lessons From The Apt43 Kimsuky Takedown" published by Bloo. #APTDown, #Kimsuky, #DPRK, #CTI https://bloo.io/blog/tracking-the-trackers-lessons-from-the-apt43-kimsuky-takedown
"Be KVM, Do Fraud" published by Wav3. #ITWorker, #PiKVM, #TinyPilot, #DPRK, #CTI https://wav3.io/be-kvm-do-fraud
November 15, 2025 at 1:30 PM
"Be KVM, Do Fraud" published by Wav3. #ITWorker, #PiKVM, #TinyPilot, #DPRK, #CTI https://wav3.io/be-kvm-do-fraud
"Justice Department Announces Nationwide Actions to Combat Illicit North Korean Government Revenue Generation" published by USJustice. #APT38, #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/opa/pr/justice-department-announces-nationwide-actions-combat-illicit-north-korean-government
November 15, 2025 at 1:30 PM