3 Ama-APT E-DPRK Ahloliwe Embonini Yezokuvikela YaseNingizimu Korea

Izinsongo eziqhubekayo zaseNyakatho Korea (ama-APT) bezilokhu zihlola buthule osonkontileka bezokuvikela baseSouth Korea isikhathi esingangonyaka nesigamu, zingena ezinhlanganweni ezingaba ngu-10.

Amaphoyisa aseNingizimu Korea kuleli sonto akhululiwe okutholwe uphenyo eyembule imikhankaso yobunhloli ngesikhathi esisodwa andariel (aka Onyx Sleet, Silent Chollima, Plutonium), Kimsuky (aka APT 43, Thallium, Velvet Chollima, Black Banshee), kanye neLazarus Group ebanzi. Abomthetho abazange bazisho izinhlangano zokuvikela isisulu noma banikeze imininingwane ngedatha eyebiwe.

Lesi simemezelo siza ngemuva kosuku olulodwa iNorth Korea yenze isinqumo sayo umshini wokuqala ngqa olingisa ukuhlasela kwezikhali zenuzi.

I-DPRK APTs Iyaqhubeka

Ambalwa amazwe aqaphela kakhulu izinsongo ze-inthanethi ezivela emazweni angaphandle njengeNingizimu Korea, futhi zimbalwa izimboni ezizaziyo njengezempi nokuzivikela. Nokho, uKim ungcono kakhulu njalo babonakala bethola indlela.

"Izinsongo ze-APT, ikakhulukazi lezo eziqhutshwa abadlali bezinga likahulumeni, ziyaziwa ukuthi kunzima ukuzinqanda ngokugcwele," kukhala uMnu. Ngoc Bui, uchwepheshe we-cybersecurity kwaMenlo Security. “Uma i-APT noma umlingisi egqugquzeleke kakhulu, kunezithiyo ezimbalwa ezingeke zigcine zinqotshwe.”

NgoNovemba 2022, ngokwesibonelo, uLazarus wayeqondise kusonkontileka owayenolwazi lwe-cyber ngokwanele ukuthi asebenzise amanethiwekhi ahlukene angaphakathi nawangaphandle. Nokho, abaduni basebenzise ithuba lokunganaki kwabo ekulawuleni uhlelo oluxhumanisa laba bobabili. Okokuqala, abaduni baphule futhi bathelela iseva yenethiwekhi yangaphandle. Ngenkathi izivikelo ziphansi ukuze kuhlolwe inethiwekhi, zashuna ngohlelo lokuxhumanisa inethiwekhi nasezindaweni zangaphakathi. Base beqala ukuvuna nokukhipha “idatha ebalulekile” kumakhompyutha ezisebenzi ayisithupha.

Kwelinye icala eliqala cishe ngo-Okthoba 2022, u-Andariel uthole imininingwane yokungena yesisebenzi senkampani eyenza ukunakekelwa kwe-IT okukude komunye wosonkontileka bezokuvikela okukhulunywa ngabo. Isebenzisa i-akhawunti entshontshiwe, ithelele amaseva enkampani ngohlelo olungayilungele ikhompuyutha kanye nedatha ehlutshiwe ehlobene nobuchwepheshe bokuvikela.

Amaphoyisa aphinde agqamisa isigameko esenzeka kusukela ngo-Ephreli kuya kuJulayi 2023, lapho uKimsuky asebenzisa kabi iseva ye-imeyili yeqembu esetshenziswa inkampani esebenzisana nenkampani yezokuvikela. Ukuba sengozini kuvumele abahlaseli abangagunyaziwe ukulanda amafayela amakhulu abethunyelwe ngaphakathi nge-imeyili.

Ephefumula uLazaru

Okusebenziseka kuziphathimandla, uBui uyachaza, ukuthi “Amaqembu e-DPRK afana noLazaru awasebenzisi kabusha uhlelo olungayilungele ikhompuyutha kuphela kodwa nengqalasizinda yawo yenethiwekhi, okungaba sengozini namandla ekusebenzeni kwawo. Ukwehluleka kwabo kwe-OPSEC nokusebenzisa kabusha ingqalasizinda, kuhlanganiswe namaqhinga amasha afana nezinkampani ezingenayo, kubenza bathakasele ukuqapha.”

Izigilamkhuba ezilandela ukwephulwa ngakunye kwezokuvikela zihlonzwe ngenxa yohlelo olungayilungele ikhompuyutha abalufakile ngemuva kokuyekethisa - okuhlanganisa i-Nukesped kanye ne-Tiger remote access Trojans (RATs) - kanye nezakhiwo zabo namakheli e-IP. Ngokuphawulekayo, amanye alawo ma-IP alandelelwa eShenyang, eChina, kanye nokuhlasela kuka-2014 ngokumelene neKorea Hydro & Nuclear Power Co.

"Imizamo yokugebenga yaseNorth Korea eqondise kubuchwepheshe bezokuvikela kulindeleke ukuthi iqhubeke," kusho i-Korean National Police Agency esitatimendeni. I-ejensi incoma ukuthi izinkampani zokuvikela kanye nozakwethu basebenzise ukuqinisekiswa kwezinto ezimbili futhi ngezikhathi ezithile baguqule amaphasiwedi ahlotshaniswa nama-akhawunti abo, bavale ngaphakathi kumanethiwekhi angaphandle, futhi bavimbe ukufinyelela kuzinsiza ezibucayi zamakheli e-IP angagunyaziwe nangadingekile.

I-SEO Powered Content & PR Distribution. Khuliswa Namuhla.
I-PlatoData.Network Vertical Generative Ai. Zinike Amandla. Finyelela Lapha.
I-PlatoAiStream. I-Web3 Intelligence. Ulwazi Lukhulisiwe. Finyelela Lapha.
I-PlatoESG. Ikhabhoni, I-CleanTech, Amandla, Environment, Ilanga, Ukuphathwa Kwemfucuza. Finyelela Lapha.
I-PlatoHealth. I-Biotech kanye ne-Clinical Trials Intelligence. Finyelela Lapha.
Source: https://www.darkreading.com/cyberattacks-data-breaches/north-korea-apt-triumvirate-spied-on-south-korean-defense-industry-for-years

I-Generative Data Intelligence

3 I-DPRK APTs Ehloliwe Embonini Yezokuvikela YaseNingizimu Korea

I-DPRK APTs Iyaqhubeka

Ephefumula uLazaru

Isikhwama se-BUIDL sikaBlackrock Sidlula uFranklin Templeton ukuze sibe Umnikelo Omkhulu Kunawo Wonke we-RWA Tokenized

I-Option2Trade and Optimism - Izindlela Ezi-3 Eziphezulu Esebenzisa I-Ethereum's Scalability Ukukhulisa I-Ecosystem

Latest Intelligence

Phakathi kwamaReality VR Podcast ft Maeva Sponbergs of Beyond Frames

Ukukhula Kwezimayini Zeselula: Inguqulo ye-Beta Yohlelo Lokusebenza lwe-BlockDAG ye-X1 Ishintsha Umdlalo, Izinselele i-Bitcoin nemakethe ye-Solana

Ukuhweba 101 Kwembuliwe: Izifundo Eziphelele Kwi-Forex Futhi… - CryptoInfoNet

I-Epic Satoshi Spurs Yethulwa Amathokheni Amasha we-Runes Nge-Market Cap engu-$88M

I-CEO yakwaCoinbase uBrian Armstrong Uthi Izixazululo Ze-Layer-2 zizoshayela Amacala amaningi Wokusebenzisa ku-Crypto Economy - The Daily Hodl

I-JPMorgan Chase Ikhokha Imali Engu-$448,000,000 Ezinhlawulweni ZaseMelika Ngokuhluleka Ukuqapha Izigidigidi Zokwenziwe Ezindaweni Zokuhweba Zebhange Zomhlaba Wonke - The Daily Hodl

Xoxa nathi