Éric FreyssinetJan 15

How We Caught Lazarus's IT Workers Scheme Live on Camera

An entire North Korean infiltration operation aimed at deploying remote IT workers across different companies in the American financial and crypto/Web3 sectors, with the objective of conducting corporate espionage and generating funding for the sanctioned regime. We attributed this effort to the state-sponsored APT Lazarus, specifically the Famous Chollima division. 

https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/

#Panocrim #Clusif

How We Caught Lazarus's IT Workers Scheme Live on Camera

See how Lazarus Group's IT workers scheme was exposed on a live camera using real-time monitoring inside ANY.RUN’s sandbox. 

ANY.RUN's Cybersecurity Blog
Show threadANY.RUNJan 16
@ericfreyss Thank you for sharing, Éric!
Show threadÉric Freyssinet
@anyrun_app It was quoted yesterday during this year's Cybercrime Panorama (#Panocrim) by the Clusif organisation : https://clusif.fr/26eme-edition-de-panocrim-les-tendances-cles-de-la-cybercriminalite-a-lheure-de-lia/
26ème édition de Panocrim : les tendances clés de la cybercriminalité à l’heure de l’IA ! - Clusif

Participez au rendez-vous annuel de la Cybercriminalité du Clusif, le 15 janvier 2026 !

Clusif
Jan 16 at 11:23amWeb