Lord777
Professional
- Messages
- 2,578
- Reaction score
- 1,532
- Points
- 113
What other ways will the country replenish its treasury?
The national Cybersecurity Centers of the United Kingdom and South Korea warn of an increase in the number and complexity of attacks on software supply chains from North Korea. South Korea's National Intelligence Service (NIS) and the UK's National Cyber Security Centre (NCSC) have issued a joint alert to raise awareness of the threat targeting governments, financial institutions and defense industry companies around the world.
According to the agencies, North Korean hackers use zero-day vulnerabilities( Zero Day, 0day-vulnerability), known flaws, as well as many exploits to achieve goals that correspond to the state interests of North Korea. The country's interests include fundraising, espionage, and theft of intellectual property and advanced technologies from various industries, including defense.
The warning highlights that in a digital and interconnected world, attacks on software supply chains can have profound and far-reaching consequences for affected organizations. Tips for preventing such attacks include enabling two-factor authentication, updating security systems, and monitoring networks for abnormal traffic.
NCSC and NIS listed examples of attacks attributed to the Lazarus group, which is considered to be a North Korean-sponsored branch of the country's cyber army. The most striking example is an attack on the supply chain of the 3CX application, during which hackers introduced malicious code into the program installer used by users through legitimate channels.
As a result of the attack, information about 3CX users was stolen, including account information. Programs were also installed on Windows to steal data from browsers, including your browsing history.
North Korea's attacks are part of the country's ongoing efforts to disrupt global cybersecurity and highlight the need for vigilance and cooperation on cybersecurity at the international level.
The national Cybersecurity Centers of the United Kingdom and South Korea warn of an increase in the number and complexity of attacks on software supply chains from North Korea. South Korea's National Intelligence Service (NIS) and the UK's National Cyber Security Centre (NCSC) have issued a joint alert to raise awareness of the threat targeting governments, financial institutions and defense industry companies around the world.
According to the agencies, North Korean hackers use zero-day vulnerabilities( Zero Day, 0day-vulnerability), known flaws, as well as many exploits to achieve goals that correspond to the state interests of North Korea. The country's interests include fundraising, espionage, and theft of intellectual property and advanced technologies from various industries, including defense.
The warning highlights that in a digital and interconnected world, attacks on software supply chains can have profound and far-reaching consequences for affected organizations. Tips for preventing such attacks include enabling two-factor authentication, updating security systems, and monitoring networks for abnormal traffic.
NCSC and NIS listed examples of attacks attributed to the Lazarus group, which is considered to be a North Korean-sponsored branch of the country's cyber army. The most striking example is an attack on the supply chain of the 3CX application, during which hackers introduced malicious code into the program installer used by users through legitimate channels.
As a result of the attack, information about 3CX users was stolen, including account information. Programs were also installed on Windows to steal data from browsers, including your browsing history.
North Korea's attacks are part of the country's ongoing efforts to disrupt global cybersecurity and highlight the need for vigilance and cooperation on cybersecurity at the international level.
