Fun

News Feed - 2023-10-02 12:10:57

Brayden Lindrea5 hours agoCrypto firms beware: Lazarus’ new malware can now bypass detectionThe malware payload “LightlessCan” — used in fake job scams — is far more challenging to detect than its predecessor, warns cybersecurity researchers at ESET.2099 Total views25 Total sharesListen to article 0:00NewsJoin us on social networksNorth Korean hacking collective, the Lazarus Group, has been using a new type of “sophisticated” malware as part of its fake employment scams, which researchers warn is far more challenging to detect than its predecessor.


According to a Sept. 29 post from ESET’s senior malware researcher Peter Kálnai, while analyzing a recent fake job attack against a Spain-based aerospace firm, ESET researchers discovered a publicly undocumented backdoor named LightlessCan.#ESET researchers unveiled their findings about an attack by the North Korea-linked #APT group #Lazarus that took aim at an aerospace company in Spain.

▶️ Find out more in a #WeekinSecurity video with @TonyAtESET. pic.twitter.com/M94J200VQx— ESET (@ESET) September 29, 2023


The Lazarus Group’s fake job scam typically involves tricking victims with a potential offer of employment at a well-known firm. The attackers would entice victims to download a malicious payload masqueraded as documents to do all sorts of damage.


However, Kálnai says the new LightlessCan payload is a “significant advancement” compared with its predecessor, BlindingCan.


“LightlessCan mimics the functionalities of a wide range of native Windows commands, enabling discreet execution within the RAT itself instead of noisy console executions,” Kálnai said.


“This approach offers a significant advantage in terms of stealthiness, both in evading real-time monitoring solutions like EDRs, and postmortem digital forensic tools,” he added.️‍♂️ Beware of fake LinkedIn recruiters! Find out how Lazarus group exploited a Spanish aerospace company via trojanized coding challenge. Dive into the details of their cyberespionage campaign in our latest #WeLiveSecurity article. #ESET #ProgressProtected— ESET (@ESET) September 29, 2023


The new payload also uses what the researcher calls “execution guardrails,” ensuring that the payload can only be decrypted on the intended victim’s machine, thereby avoiding unintended decryption by security researchers.


Kálnai said one case involving the new malware came from an attack on a Spanish aerospace firm when an employee received a message from a fake Meta recruiter named Steve Dawson in 2022.


Soon after, the hackers sent over the two simple coding challenges embedded with the malware. The initial contact by the attacker impersonating a recruiter from Meta. Source: WeLiveSecurity.


Cyberespionage was the primary motivation behind Lazarus Group’s attack on the Spain-based aerospace firm, he added.


Related:3 steps crypto investors can take to avoid hacks by the Lazarus Group


Since 2016, North Korean hackers have stolen an estimated $3.5 billion from cryptocurrency projects, according to a Sept. 14 report by blockchain forensics firm Chainalysis.


In September 2022, cybersecurity firm SentinelOne warned of a fake job scam on LinkedIn, offering potential victims a job at Crypto.com as part of a campaign dubbed “Operation Dream Job." 


Meanwhile, the United Nations has been trying to curtail North Korea’s cybercrime tactics at the international level, as it is understood North Korea is using the stolen funds to support its nuclear missile program.


Magazine:$3.4B of Bitcoin in a popcorn tin: The Silk Road hacker’s story# Business# Security# Malware# Cybercrime# North Korea# Cybersecurity# DeFiAdd reactionAdd reactionRead moreHow to earn passive income with peer-to-peer lendingDAOs need to learn from Burning Man for mainstream adoptionAI tech boom: Is the artificial intelligence market already saturated?

News Feed

Japanese Yen Plunges to 32-Year Low Against US Dollar — Another Intervention by Authorities Expected
Japanese Yen Plunges to 32-Year Low Against US Dollar — Another Intervention by Authorities Expected The Japanese yen’s exchange rate versus the U.S. dollar recently plunge
Binance Lending Adds Bitcoin Cash to Flexible Deposits Letting Users Earn Interest on BCH
Binance Lending Adds Bitcoin Cash to Flexible Deposits Letting Users Earn Interest on BCH Bitcoin cash users now have another venue to earn interest on their digital asset holdin
Arbitrum Network Stalled Due to Sequencer Downtime
Arbitrum Network Stalled Due to Sequencer Downtime The Arbitrum network, an Ethereum L2 (Layer 2) rollup, experienced some difficulties that caused a complete stop in the productio
Analyst Predicts Possible 40% Crash For XRP Price With Gravestone DOJI Candle Formation
Este artículo también está disponible en español. The long-awaited rally in the XRP pricemay be coming to a fast end, as a crypto analyst has predicted a 40% crash for th
Terraform Labs to sell 4 companies as part of wind-down
Jesse Coghlan3 hours agoTerraform Labs to sell 4 companies as part of wind-downThe bankrupt Terraform Labs is looking to sell four of its companies as it winds down operations to comply with its multi-billion SEC deal.87
Ethereum and layer-2 addresses surge 127% this year — Glassnode
Helen Partz9 hours agoEthereum and layer-2 addresses surge 127% this year — GlassnodeWhile Bitcoin saw a 20% drop in daily active addresses in Q2 2024, Ethereum and L2s posted a 127% increase in such addresses in H1 20
Gareth Jenkinson14 hours agoMiddle East regulatory clarity drives crypto industry growth — Binance FZE headThe UAE, Dubai and Bahrain continue to attract major cryptocurrency exchanges and businesses due to their progr
Savannah Fortis11 hours agoUniversal Music and Google in talks over deal to combat AI deep fakes: ReportUniversal Music and Google are reportedly in negotiations over a tool that would allow for the creation of AI tracks
Report: Walmart Trademark Filings Hint at Retailer’s Intent to Produce Metaverse and NFT Concepts
Report: Walmart Trademark Filings Hint at Retailer"s Intent to Produce Metaverse and NFT Concepts According to a recent report, the American multinational retail corporation that o
WisdomTree wins NYDFS trust company charter
Zoltan Vardai12 hours agoWisdomTree wins NYDFS trust company charterThe charter will enable WisdomTree’s newly founded entity to offer crypto custody, stablecoin issuance, and stablecoin reserve management services.823
Indian Finance Minister: Crypto Ban, Regulation Effective Only With Significant International Collaboration
Indian Finance Minister: Crypto Ban, Regulation Effective Only With Significant International Collaboration India’s finance minister has informed parliament that the central
Biden Signs Executive Order Establishing National Crypto Policy Across 6 Key Priorities
Biden Signs Executive Order Establishing National Crypto Policy Across 6 Key Priorities U.S. President Joe Biden has signed a “historic” executive order on crypto ass