lazarusholic

@[email protected]
87 Followers
0 Following
1.7K Posts
a big fan of lazarus. You can find me on http://t.me/lazarusholic , https://lazarus.day.
lazarusholic8h ago
"Mapping Ottercookie Infrastructure" published by Walmart. #OtterCookie, #DPRK, #CTI https://medium.com/walmartglobaltech/mapping-ottercookie-infrastructure-1c49f0cd3883
Mapping Ottercookie Infrastructure

By: Jason Reaves

Medium
lazarusholic8h ago
"Blurred Lines of Cyber Threat Attribution: The Evolving Tactics of North Korean Cyber Threat Actors" published by Zscaler. #Kimsuky, #Lazarus, #Slides, #DPRK, #CTI https://www.dailysecu.com/form/html/k-cti/pdf/2026/down-B-1.pdf
lazarusholic1d ago
"Supply Chain Malware Alert: plain-crypto-js Compromises Axios Packages" published by Resecurity. #Axios, #NPM, #DPRK, #CTI https://www.resecurity.com/blog/article/supply-chain-malware-alert-plain-crypto-js-compromises-axios-packages
Resecurity | Supply Chain Malware Alert: plain-crypto-js Compromises Axios Packages

lazarusholic1d ago
"OtterCookie Expands Targeting to AI Coding Tools" published by CyberAndRamen. #NPM, #OtterCookie, #DPRK, #CTI https://cyberandramen.net/2026/04/04/ottercookie-expands-targeting-to-ai-coding-tools-analysis-of-a-trojanized-npm-campaign/
OtterCookie Expands Targeting to AI Coding Tools

Malicious npm packages spoofing Gemini and popular JavaScript libraries deliver OtterCookie, targeting software developers

Cyber and Ramen
lazarusholic1d ago
"From Axios NPM Supply Chain Attack to Tracking DPRK’s BlueNoroff" published by DCSO. #Axios, #BlueNoroff, #NPM, #DPRK, #CTI https://medium.com/@DCSO_CyTec/from-axios-npm-supply-chain-attack-to-tracking-dprks-bluenoroff-c9080c9b4ce3
From Axios NPM Supply Chain Attack to Tracking DPRK’s BlueNoroff

Key Facts

Medium
lazarusholic1d ago
"Axios NPM supply chain incident" published by CiscoTalos. #Axios, #NPM, #DPRK, #CTI https://blog.talosintelligence.com/axois-npm-supply-chain-incident/
Axois NPM Supply Chain Incident

Overview of the recent Axios NPM supply chain incident including details of the payloads delivered from actor-controlled infrastructure.

Cisco Talos Blog
lazarusholic1d ago
"Axios供应链攻击事件再追踪:线索直指Lazarus组织" published by Qihoo360. #Axios, #NPM, #DPRK, #CTI https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247508249&idx=1&sn=d50892ac7b48a52ff293889bb77c800f
lazarusholic1d ago
"Axios npm Supply Chain Attack - Cross-Platform RAT Deployed via Compromised Maintainer Account" published by Bitdefender. #Axios, #NPM, #DPRK, #CTI https://www.bitdefender.com/en-us/blog/businessinsights/technical-advisory-axios-npm-supply-chain-attack-cross-platform-rat-deployed-compromised-account
Technical Advisory: Axios npm Supply Chain Attack - Cross-Platform RAT Deployed via Compromised Maintainer Account

[CRITICAL] | Active RAT | Malicious npm versions removed | Assess all systems that ran npm install during exposure window .

Bitdefender Blog
lazarusholic1d ago
"북한 연계 그룹의 AXIOS 공급망 공격" published by SecuI. #Axios, #NPM, #DPRK, #CTI https://stic.secui.com/main/main/threatInfo?id=371&lang=ko
STIC

STIC 3.0

lazarusholic1d ago
"Code Names, Fake Personas, and Iranian Recruits: New Details from Inside the NKITW Operation" published by Flare. #ITWorker, #DPRK, #CTI https://flare.io/learn/resources/blog/iranian-recruits-inside-the-nkitw-operation
New Details of Iranian Recruits from Inside the NKITW Operation - Flare

The North Korean regime is likely hiring, with intention, individuals from Syria, Saudi Arabia, and Iran as part of its IT worker infiltration program.

Flare | Threat Exposure Management | Unmatched Visibility into Cybercrime