“Unmasking North Korean Cyber Intrusions: A Deep Dive into the Russian Missile Firm Hack”

bunee 07 Aug 2023

North Korean Intruders Say ‘Hello’ To Russian Missile Engineering Firm

Major Points:

  • Both North Korean nation-state cyber actor groups are spotted attacking the Russian missile engineering company, NPO Mashinostroyeniya.
  • SentinelOne, a cybersecurity firm, has found “two instances of North Korea related compromise of sensitive internal IT infrastructure.”
  • The cyber attacks included an email server compromise and a deployment of a Windows backdoor known as ‘Bistolvy’.

Acting a Bit ‘North’ of Normal

So, it seems that our dear friends up North (yeah, North Korea, if you didn’t catch my drift) have found a new pastime. Instead of sticking to their usual shenanigans like missile tests or constant threats of war, they have decided to venture into the beautifully treacherous world of cybercrime.

Not just anyone, though. They took a peek into the house of the Russian missile engineering company, NPO Mashinostroyeniya, aiming to rustle some feathers and perhaps find some secret codes for world domination (or maybe just missile tech codes). It seems nobody is safe these days, not even our comrades in the East.

A Sentinel That Caught More Than Just a Couple of Wiseguys

Lucky for us, SentinelOne, the world-famous cybersecurity firm, was “on guard” (pun absolutely intended). They uncovered “two instances of North Korea related compromise of sensitive internal IT infrastructure.” These cyber invasions included an email server compromise and top it off, the installation of a Windows backdoor strikingly nicknamed ‘Bistolvy’. I guess the cold weather up North doesn’t keep hackers away!

Summarizing the Invasion

To wrap it all up in a neat little cyber package: Two different North Korean nation-state hackers took a virtual trip to the Russian missile engineering company, NPO Mashinostroyeniya. Our cyber watchmen at SentinelOne picked up on these sneaky shenanigans and found two cases where North Korea had infiltrated the internal IT infrastructure, messing with email servers and planting a pesky Windows backdoor ‘Bistolvy’. Just goes to show, folks, no matter how icy the relations or how cold the weather – cyber tricks are never out of season.



Original Article: https://thehackernews.com/2023/08/north-korean-hackers-targets-russian.html




Leave a Reply

Your email address will not be published. Required fields are marked *

See Also...

Unmasking Fraudulent Loan Apps: A Deep Dive into the Dark Side of the Google Play Store

Unmasking Fraudulent Loan Apps: A Deep Dive into the Dark Side of the Google Play Store

Devious Loan Apps: Beware of the Digital Pickpocket! Cybersecurity researchers have unearthed 18 malevolent loan ...

(▀̿Ĺ̯▀̿ ̿) Copyright , All Rights Reserved
Website courtesy of Lucid Perspective