North Korea-linked Geumseong121 APT group is sending spear-phishing emails to target people interested in North Korean refugees

Fifty malicious domains belonging to the group were seized by Microsoft in December

North Korean hackers have launched 'Operation Spy Cloud' campaign to target people interested in North Korean refugees

Dev Kundaliya
01 April 2020

Tweet
Facebook
LinkedIn
Send to

The researchers from South Korea-based cyber security firm ESTsecurity claim to have uncovered a new cyber espionage campaign, which they believe is being carried out by North Korea-backed APT group Geumeong121....

To continue reading...

Don't have an account?

Computing helps IT leaders to make technology a revenue and innovation engine for their businesses. Our unique package of news and analysis enables you to discover what the smartest minds in the industry are doing and scan the horizon for what’s next

REAL-TIME NEWS AND ANALYSIS: find out what’s happening and why in the technology space including news on your competitors and regulators – delivered to your desktop or mobile in a daily newsletter
MARKET TRENDS: learn about the implications for you of the latest shifts in everything from AI to machine learning and blockchains – evaluated in a new monthly editor’s newsletter for CIOs
CIO INTERVIEWS: find out what fellow IT leaders are doing and why

Attackers are actively exploiting Zerologon Windows vulnerability, Microsoft warns

The flaw could allow an attacker with a foothold on the local network to instantly become a Domain Admin

Threats and Risks
25 September 2020

Six per cent of Google Cloud buckets are misconfigured and vulnerable to unauthorised access, research reveals

Finding exposed cloud databases on internet is not a difficult job, according to researchers

Threats and Risks
23 September 2020

Owned by the C-suite: a new approach to security is needed as cyber risks multiply

Post-Covid-19, security is no longer an ‘IT issue’ – it’s a C-suite item and a fundamental strategic priority

Threats and Risks
22 September 2020

Chinese state-sponsored cyber actors are targeting bugs in F5, Citrix, Pulse and Microsoft Exchange Servers, US agencies warn

Organisations need to patch their systems immediately, they advise

Threats and Risks
15 September 2020

Exploit code for 'Zerologon' bug impacting Windows Netlogon Remote Protocol published on Github

The vulnerability could allow an attacker to have access to an organisation's Active Directory domain controllers

Threats and Risks
15 September 2020

Combatting rogue URL tricks: How you can quickly identify the latest phishing attacks

Inside modern ERP: Enabling transformation in people and processes

DevSecOps: The key to more secure, efficient, and compliant development

Playing to strengths: Achieving a dependable, secure and manageable multi-cloud

Endpoint Management and Security Hub

North Korea-linked Geumseong121 APT group is sending spear-phishing emails to target people interested in North Korean refugees

Fifty malicious domains belonging to the group were seized by Microsoft in December

To continue reading...

Attackers are actively exploiting Zerologon Windows vulnerability, Microsoft warns

Six per cent of Google Cloud buckets are misconfigured and vulnerable to unauthorised access, research reveals

Owned by the C-suite: a new approach to security is needed as cyber risks multiply

Chinese state-sponsored cyber actors are targeting bugs in F5, Citrix, Pulse and Microsoft Exchange Servers, US agencies warn

Exploit code for 'Zerologon' bug impacting Windows Netlogon Remote Protocol published on Github

To continue reading...

Sign In

Don't have an account?