APT38

APT38 is a North Korean state-sponsored threat group that specializes in financial cyber operations; it has been attributed to the Reconnaissance General Bureau. Active since at least 2014, APT38 has targeted banks, financial institutions, casinos, cryptocurrency exchanges, SWIFT system endpoints, and ATMs in at least 38 countries worldwide. Significant operations include the 2016 Bank of Bangladesh heist, during which APT38 stole $81 million, as well as attacks against Bancomext (2018) and Banco de Chile (2018); some of their attacks have been destructive.North Korean group definitions are known to have significant overlap, and some security researchers report all North Korean state-sponsored cyber activity under the name Lazarus Group instead of tracking clusters or subgroups.

This Cyber News was published on attack.mitre.org. Publication date: Thu, 07 Dec 2023 22:12:07 +0000

Cyber News related to APT38

APT38 - APT38 is a North Korean state-sponsored threat group that specializes in financial cyber operations; it has been attributed to the Reconnaissance General Bureau. Active since at least 2014, APT38 has targeted banks, financial institutions, casinos, ...
11 months ago Attack.mitre.org

State-Sponsored APT Groups Use Ransomware Tactics for Intelligence Gathering and Sabotage - State-sponsored threat groups are increasingly using ransomware-like tactics to hide more insidious activities. Russian APT group Sandworm has used ransomware programs to destroy data multiple times in the past six months, while North Korea's Lazarus ...
1 year ago Csoonline.com

North Korean Hackers Exploit Unpatched Zimbra Devices in No Pineapple Campaign - A new intelligence gathering campaign linked to the North Korean state-sponsored Lazarus Group has been discovered by Finnish cybersecurity company WithSecure. The campaign, codenamed No Pineapple, exploited known security flaws in unpatched Zimbra ...
1 year ago Thehackernews.com

Microsoft Warns of Fake Skills Assessment Portals Targeting IT Job Seekers - A sub-cluster within the infamous Lazarus Group has established new infrastructure that impersonates skills assessment portals as part of its social engineering campaigns. Microsoft attributed the activity to a threat actor it calls Sapphire Sleet, ...
11 months ago Thehackernews.com

Lazarus Group - Lazarus Group is a North Korean state-sponsored cyber threat group that has been attributed to the Reconnaissance General Bureau. The group has been active since at least 2009 and was reportedly responsible for the November 2014 destructive wiper ...
11 months ago Attack.mitre.org

Latest Cyber News

CVE-2024-44308 - 1 day ago
CVE-2024-44309 - 1 day ago
CVE-2018-9467 - 1 day ago
CVE-2018-9440 - 1 day ago
CVE-2018-9456 - 1 day ago
CVE-2018-9466 - 1 day ago
CVE-2024-52595 - 1 day ago
CVE-2024-30424 - 1 day ago
CVE-2024-51669 - 1 day ago
CVE-2024-52392 - 1 day ago
CVE-2018-9420 - 1 day ago
CVE-2018-9421 - 1 day ago
CVE-2018-9424 - 1 day ago
CVE-2018-9428 - 1 day ago
CVE-2018-9432 - 1 day ago
CVE-2018-9433 - 1 day ago
CVE-2023-27609 - 1 day ago
CVE-2024-11400 - 1 day ago
CVE-2018-9411 - 1 day ago
CVE-2018-9412 - 1 day ago

Cyber Trends (last 7 days)

Okta - 11 months ago
23andMe - 11 months ago
Kimsuky - 11 months ago
LogoFAIL - 11 months ago
Gh0st rat - 11 months ago

Trending Cyber News (last 7 days)

CVE-2024-10268 - 2 days ago
CVE-2024-10388 - 2 days ago
CVE-2024-11069 - 2 days ago
CVE-2024-11098 - 2 days ago
CVE-2024-31141 - 1 day ago
CVE-2024-11036 - 1 day ago
CVE-2024-11038 - 1 day ago
CVE-2024-11195 - 1 day ago
CVE-2024-11194 - 1 day ago
CVE-2024-11198 - 1 day ago
CVE-2024-11224 - 1 day ago
CVE-2024-52675 - 1 day ago
CVE-2024-9777 - 1 day ago
CVE-2024-9830 - 1 day ago
CVE-2024-10204 - 1 day ago
CVE-2024-11075 - 1 day ago
CVE-2024-52711 - 1 day ago
CVE-2024-10524 - 1 day ago
CVE-2024-50803 - 1 day ago
CVE-2024-52582 - 1 day ago