Google has warned it has uncovered an “ongoing” state-backed hacking campaign run by North Korea targeting cyber security researchers.
The Silicon Valley group said its threat analysis team found that cyber attackers posing as researchers had created numerous fake social media profiles on platforms such as Twitter and LinkedIn. To gain credibility, they also had set up a fake blog for which they would get unwitting targets to write guest posts about actual software bugs.
After establishing communication with an actual researcher, the attackers would ask the target to work together on cyber vulnerability research and then share collaboration tools containing malicious code to install malware on the researcher’s systems.
In some cases, the attackers were able to create a backdoor to the victim’s computer even when their systems were running fully patched and up-to-date Windows 10 and Chrome browser versions, Google said.
The campaign would allow the hackers to glean insights into vulnerabilities the research community was studying to exploit them.
Several researchers wrote on Twitter in the wake of the Google statement that they had been contacted by the hackers but had not been compromised.
Google attributed the latest campaign to “a government-backed entity based in North Korea” — one of the biggest state sponsors of hacking alongside Russia, Iran and China.
North Korea is also among the countries that have been accused of carrying out cyber attacks to steal coronavirus vaccine-related research and data. The Wall Street Journal reported last year that North Korea had co-ordinated attacks on at least six vaccine developers including Johnson & Johnson and Novavax in the US, the UK’s AstraZeneca and several South Korean companies.
The latest campaign comes as cyber security companies have found themselves a particular target of hacking campaigns.
In December, cyber security group FireEye as well as Microsoft reported that they had been victims of a sprawling cyber espionage campaign run by Russian state hackers that also targeted a number of US federal agencies and private sector groups.
"social" - Google News
January 26, 2021 at 01:07PM
https://ift.tt/2NDVKZB
North Korea hackers using social media to target security researchers - Financial Times
"social" - Google News
https://ift.tt/38fmaXp
https://ift.tt/2WhuDnP
Bagikan Berita Ini
ayo segera bergabung dengan saya di D3W4PK
ReplyDeletehanya dengan minimal deposit 10.000 kalian bisa menangkan uang jutaan rupiah
ditunggu apa lagi ayo segera bergabung, dan di coba keberuntungannya
untuk info lebih jelas silahkan di add Whatshapp : +8558778142
terimakasih ya waktunya ^.^