lazarusholicJul 27, 2024
"Onyx Sleet uses array of malware to gather intelligence for North Korea" published by Microsoft. #LightHand, #OnyxSleet, #TigerRAT, #SmallTiger, #BlackRAT, #ValidAlpha, #CTI, #OSINT, #LAZARUS https://www.microsoft.com/en-us/security/blog/2024/07/25/onyx-sleet-uses-array-of-malware-to-gather-intelligence-for-north-korea/
Onyx Sleet uses array of malware to gather intelligence for North Korea | Microsoft Security Blog

On July 25, 2024, the United States Department of Justice (DOJ) indicted an individual linked to the North Korean threat actor that Microsoft tracks as Onyx Sleet. Microsoft Threat Intelligence collaborated with the Federal Bureau of Investigation (FBI) in tracking activity associated with Onyx Sleet. We will continue to closely monitor Onyx Sleet’s activity to assess changes following the indictment.

Microsoft Security Blog
lazarusholicApr 8, 2024
"Confronting Lazarus Group - MagicRAT and TigerRAT Campaign" published by AttackIQ. #MagicRAT, #TigerRAT, #CTI, #OSINT, #LAZARUS https://www.attackiq.com/2024/04/04/cyber-sorcery/
Confronting Lazarus Group - MagicRAT and TigerRAT Campaign - AttackIQ

Delve into MagicRAT's emergence, Lazarus Group's tactics shift to TigerRAT. Safeguard strategies with AttackIQ Flex for robust cyber defense.

AttackIQ
lazarusholicNov 20, 2023
"Circumstances of an Attack Exploiting an Asset Management Program (Andariel Group)" published by Ahnlab. #Andariel, #NukeSped, #LilithRAT, #BlackRAT, #TigerRAT, #CTI, #OSINT, #LAZARUS https://asec.ahnlab.com/en/59073/
Circumstances of an Attack Exploiting an Asset Management Program (Andariel Group) - ASEC BLOG

AhnLab Security Emergency response Center

ASEC BLOG
lazarusholicNov 10, 2023
"자산 관리 프로그램을 악용한 공격 정황 포착 (Andariel 그룹)" published by Ahnlab. #Andariel, #NukeSped, #LilithRAT, #BlackRAT, #TigerRAT, #CTI, #OSINT, #LAZARUS https://asec.ahnlab.com/ko/58215/
자산 관리 프로그램을 악용한 공격 정황 포착 (Andariel 그룹) - ASEC BLOG

AhnLab Security Emergency response Center

ASEC BLOG