Lightnews — Scholar-powered news

lazarusholic @lazarusholic.bsky.social · 1d

"North Korea’s Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads" published by Socket. #ContagiousInterview, #NPM, #DPRK, #CTI https://socket.dev/blog/north-korea-contagious-interview-campaign-338-malicious-npm-packages

lazarusholic @lazarusholic.bsky.social · 1d

"Disrupting malicious uses of AI: October 2025" published by OpenAI. #XenoRAT, #Phishing, #Trend, #DPRK, #CTI https://openai.com/global-affairs/disrupting-malicious-uses-of-ai-october-2025/

1

lazarusholic @lazarusholic.bsky.social · 4d

"North Korea's crypto hackers have stolen over $2 billion in 2025" published by Elliptic. #Trend, #DPRK, #CTI https://www.elliptic.co/blog/north-korea-linked-hackers-have-already-stolen-over-2-billion-in-2025

lazarusholic @lazarusholic.bsky.social · 4d

"North Korean agents pretending to be IT guys have funneled up to $1 billion into Kim Jong Un's nuclear program" published by Fortune. #ITWorker, #News, #DPRK, #CTI https://fortune.com/article/north-korean-it-workers-kim-jong-un-cybersecurity-nuclear-program-america/

lazarusholic @lazarusholic.bsky.social · 8d

"김수키(Kimsuky) 서울대 국제문제연구소 사칭 악성코드-글로벌 복합 위기 한국의 안보전략.lnk(2025.9.28)" published by Sakai. #Kimsuky, #LNK, #DPRK, #CTI https://wezard4u.tistory.com/429610

lazarusholic @lazarusholic.bsky.social · 8d

"SBI Crypto" published by Rekt. #SBICrypto, #DPRK, #CTI https://rekt.news/sbi-crypto-rekt

lazarusholic @lazarusholic.bsky.social · 8d

"North Korea IT Workers: Inside the DPRK’s Crypto Laundering Network" published by Chainalysis. #ITWorker, #MoneyLaundering, #DPRK, #CTI https://www.chainalysis.com/blog/dprk-it-workers-north-korea-crypto-laundering-networks/

lazarusholic @lazarusholic.bsky.social · 10d

"Larva-25010 - APT Down 공격자 PC 분석" published by Ahnlab. #APTDown, #Larva-25010, #DPRK, #CTI https://asec.ahnlab.com/ko/90408/

lazarusholic @lazarusholic.bsky.social · 10d

"On September 24, 2025 addresses linked to SBI Crypto saw ~$21M in suspicious outflows" published by ZachXBT. #SBICrypto, #DPRK, #CTI https://t.me/investigations/278

lazarusholic @lazarusholic.bsky.social · 11d

"Spotted a Weird Github Organization? It Might be DPRK!" published by Ketman. #ITWorker, #DPRK, #CTI https://www.ketman.org/dprk-it-workers-github-organizations.html

2

lazarusholic @lazarusholic.bsky.social · 11d

"In July 2025, BigONE was the victim of a supply chain attack" published by Whitestream. #BigONE, #DPRK, #CTI https://archive.is/hXLSw

1

lazarusholic @lazarusholic.bsky.social · 11d

"sandfly-kernel-module-decloak" published by SandflySecurity. #APTDown, #Kimsuky, #DPRK, #CTI https://github.com/sandflysecurity/sandfly-kernel-module-decloak

lazarusholic @lazarusholic.bsky.social · 11d

"North Korea’s IT Workers expand beyond US big tech" published by Okta. #ITWorker, #DPRK, #CTI https://www.okta.com/newsroom/articles/north-korea-s-it-workers-expand-beyond-us-big-tech/

lazarusholic @lazarusholic.bsky.social · 11d

"북한 Lazarus(라자루스) 가상화폐(암호화폐)탈취를 위해 만들어진 악성코드-config(.)py(2025.8.7)" published by Sakai. #Lazarus, #DPRK, #CTI https://wezard4u.tistory.com/429606

lazarusholic @lazarusholic.bsky.social · 11d

"Unmasking Hidden Threats: Spotting a DPRK IT-Worker Campaign" published by Trellix. #ITWorker, #DPRK, #CTI https://www.trellix.com/blogs/research/unmasking-hidden-threats-spotting-a-dprk-it-worker-campaign/

lazarusholic @lazarusholic.bsky.social · 11d

"Lazarus Group: A criminal syndicate with a flag" published by Barracuda. #Lazarus, #DPRK, #CTI https://blog.barracuda.com/2025/09/23/lazarus-group--a-criminal-syndicate-with-a-flag

1

lazarusholic @lazarusholic.bsky.social · 17d

"Today, a DPRK state-affiliated group access to one of our developer’s private keys" published by Seedify. #Seedify, #DPRK, #CTI https://archive.is/IR7ak

lazarusholic @lazarusholic.bsky.social · 18d

"김수키(Kimsuky) 추정 국방대학교 안보정책학부 교수를 노린 주한 중화인민공화국 대사관 무관부 사칭 악성코드" published by Sakai. #Kimsuky, #LNK, #DPRK, #CTI https://wezard4u.tistory.com/429603

lazarusholic @lazarusholic.bsky.social · 18d

"In-Depth Analysis of the APT Down - The North Korea Files leak" published by ENKI. #APTDown, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/en/media-center/blog/in-depth-analysis-of-the-apt-down-the-north-korea-files-leak

lazarusholic @lazarusholic.bsky.social · 19d

"Larva-25004 추적 보고서" published by Ahnlab. #CJOliveNetworks, #Kimsuky, #Larva-25004, #DPRK, #CTI https://asec.ahnlab.com/ko/90292/

lazarusholic @lazarusholic.bsky.social · 20d

"APT Down - The North Korea Files 공개 자료 상세 분석 보고서" published by ENKI. #APTDown, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/media-center/blog/in-depth-analysis-of-the-apt-down-the-north-korea-files-leak

1

lazarusholic @lazarusholic.bsky.social · 21d

"김수키(Kimsuky)에서 만든 피싱 메일-2024년 귀속 종합소득세 가산세 안내(2025.9.16)" published by Sakai. #Kimsuky, #Phishing, #DPRK, #CTI https://wezard4u.tistory.com/429601

lazarusholic @lazarusholic.bsky.social · 21d

"성범죄자 고지 정보를 위장한 Kimsuky 공격" published by Logpresso. #Kimsuky, #LNK, #DPRK, #CTI https://logpresso.com/ko/blog/2025-09-18-Kimsuky-Attack

lazarusholic @lazarusholic.bsky.social · 25d

"BeaverTail variant distributed via malicious repositories and ClickFix lure" published by Gitlab. #BeaverTail, #ClickFix, #DPRK, #CTI https://gitlab-com.gitlab.io/gl-security/security-tech-notes/threat-intelligence-tech-notes/north-korean-malware-sept-2025/

lazarusholic @lazarusholic.bsky.social · 25d

"김수키(Kimsuky)삼성전자 미팅 관련 으로 제작 악성코드(2025.9.11)" published by Sakai. #Kimsuky, #LNK, #DPRK, #CTI https://wezard4u.tistory.com/429599