π° Lazarus Group Unleashes 'RemotePE' Memory-Only RAT in Attacks on Financial and Crypto Firms
π°π΅ Lazarus Group deploys new 'RemotePE' memory-only RAT against financial & crypto firms. The fileless malware evades detection by never touching the disk, using a multi-stage infection chain. #LazarusGroup #Malware #ThreatIntel #RemotePE
π cyber[.]netsecops[.]io
π° Lazarus Group Unleashes 'RemotePE' Memory-Only RAT in Attacks on Financial and Crypto Firms
π°π΅ Lazarus Group deploys new 'RemotePE' memory-only RAT against financial & crypto firms. The fileless malware evades detection by never touching the disk, using a multi-stage infection chain. #LazarusGroup #Malware #ThreatIntel #RemotePE
π cyber[.]netsecops[.]io
Lazarus Group Deploys Memory-Only RAT in Financial Sector Attacks
The notorious Lazarus Group has unleashed a sneaky new attack tool, a memory-only Remote Access Trojan (RAT), targeting the financial sector with cunning precision. This stealthy malware, known as RemotePE, is just the latest weapon in the group's arsenal, and it's being used to infiltrate and manipulate its victims.
#LazarusGroup #RemoteAccessTrojan #Rat #FinancialSector #DecentralizedFinance
Banking Trojan Targets Crypto Firms with Sophisticated Attacks
A new banking Trojan, dubbed TCLBanker, is wreaking havoc on crypto and finance platforms, allowing hackers to remotely control infected systems and steal sensitive info. This sophisticated attack, linked to North Korea's notorious Lazarus Group, has already led to the largest crypto platform hack of 2026.
#Tclbanker #BankingTrojan #LazarusGroup #NorthKorea #CryptoFirms
La Corea del Nord ha rubato il 76% di tutte le criptovalute hackerate nel 2026: due attacchi, $577 milioni, e una macchina da guerra finanziata dal cyber
Con solo due operazioni nel primo quadrimestre 2026, gli hacker nordcoreani hanno sottratto $577 milioni in criptovalute β il 76% di tutti i furti crypto globali. TRM Labs documenta come Pyongyang abbia trasformato il crimine DeFi in motore finanziario del proprio programma nucleare.
i suspect #northkorea has figured out how to use AI for #cybersecurity purposes
#crypto #DPRK #infosec #threatintel #cryptocurrency #lazarusGroup #defi
in the future of finance your parents' retirement savings will be able to go directly to #northkorea instead of having to make pitstops in #cambodia and #palau
https://x.com/0x_Abdul/status/2049830893209190681
#crypto #defi #cryptocurrency #bitcoin #solana #ethereum #corruption #DPRK #LazarusGroup #infosec #cybersecurity #threatintel #economics #sanctions #futureoffinance
BlueNoroff e le riunioni Zoom fasulle: come la Corea del Nord usa lβIA e i deepfake per svuotare i portafogli crypto dei CEO
Il gruppo nordcoreano BlueNoroff ha perfezionato un attacco multi-stadio che combina deepfake generati con ChatGPT, finte videochiamate Zoom e tecniche ClickFix per compromettere i dirigenti del settore Web3 in meno di cinque minuti. Arctic Wolf documenta la pipeline di produzione deepfake che si autoalimenta partendo dai filmati rubati alle vittime precedenti.
Contagious Interview diventa un worm: Void Dokkaebi trasforma 750 repository in vettori auto-propaganti contro gli sviluppatori
Il gruppo APT nordcoreano Void Dokkaebi (Famous Chollima) ha trasformato le sue finte offerte di lavoro in un attacco supply chain capace di propagarsi automaticamente: basta aprire un repository clonato in VS Code per attivare payload nascosti in commit manipolati. A marzo 2026, Trend Micro ha mappato oltre 750 repository infetti, 500 task.json malevoli e staging C2 su Tron, Aptos e Binance Smart Chain.
Lazarus Group Targets KelpDAO in $290m Crypto Heist
In a shocking crypto heist, North Korea's notorious Lazarus Group is accused of swiping $290 million from KelpDAO, raising questions about accountability in the digital age. This brazen theft is a stark reminder of the threats lurking in the shadows of the cryptocurrency world.
#LazarusGroup #NorthKorea #CryptoHeist #290mCryptoTheft #Kelpdao
CyberNetsecIO
Analyst207
(in)sicurezza digitale
β― Michel de Cryptadamus β―