lazarusholic
@lazarusholic.bsky.social
a big fan of lazarus. https://lazarus.day
"DPRK Contagious Interview Lure - Go Backdoor & Swift App" published by L0Psec. #ContagiousInterview, #Youtube, #DPRK, #CTI https://www.youtube.com/watch?v=VdW_e72cQw8
November 24, 2025 at 1:30 PM
"DPRK Contagious Interview Lure - Go Backdoor & Swift App" published by L0Psec. #ContagiousInterview, #Youtube, #DPRK, #CTI https://www.youtube.com/watch?v=VdW_e72cQw8
"More active DPRK macOS malware "Contagious Interview"" published by L0Psec. #ContagiousInterview, #DPRK, #CTI https://archive.md/GuCHv
November 23, 2025 at 1:30 PM
"More active DPRK macOS malware "Contagious Interview"" published by L0Psec. #ContagiousInterview, #DPRK, #CTI https://archive.md/GuCHv
"疑似APT-C-26(Lazarus)组织利用远程IT伪装部署监控程序的攻击行动分析" published by Qihoo360. #APT-C-26, #DPRK, #CTI https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247507568&idx=1&sn=af3ec0ff4685722c599eefa26925c842
November 23, 2025 at 1:30 PM
"疑似APT-C-26(Lazarus)组织利用远程IT伪装部署监控程序的攻击行动分析" published by Qihoo360. #APT-C-26, #DPRK, #CTI https://mp.weixin.qq.com/s?__biz=MzUyMjk4NzExMA==&mid=2247507568&idx=1&sn=af3ec0ff4685722c599eefa26925c842
"Kimsuky's Ongoing Evolution of KimJongRAT and Expanding Threats" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/en/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
November 23, 2025 at 1:30 PM
"Kimsuky's Ongoing Evolution of KimJongRAT and Expanding Threats" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/en/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
"Kimsuky의 지속적인 KimJongRAT 변종 개발과 그 너머의 위협" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
November 23, 2025 at 1:30 PM
"Kimsuky의 지속적인 KimJongRAT 변종 개발과 그 너머의 위협" published by ENKI. #KimjongRAT, #Kimsuky, #DPRK, #CTI https://www.enki.co.kr/media-center/blog/kimsuky-s-ongoing-evolution-of-kimjongrat-and-expanding-threats
"Inside DPRK's Fake Job Platform Targeting U.S. AI Talent" published by Validin. #ClickFix, #ContagiousInterview, #DPRK, #CTI https://www.validin.com/blog/inside_dprk_fake_job_platform/
November 23, 2025 at 11:30 AM
"Inside DPRK's Fake Job Platform Targeting U.S. AI Talent" published by Validin. #ClickFix, #ContagiousInterview, #DPRK, #CTI https://www.validin.com/blog/inside_dprk_fake_job_platform/
"朝鲜APT双雄联手:Kimsuky 偷情报当 “眼睛”,Lazarus 盗币填 “钱袋”!" published by 紫队安全研究. #Kimsuky, #Lazarus, #DPRK, #CTI https://mp.weixin.qq.com/s/h4TCYVjdLALg4XfJr1jC0w
November 23, 2025 at 11:30 AM
"朝鲜APT双雄联手:Kimsuky 偷情报当 “眼睛”,Lazarus 盗币填 “钱袋”!" published by 紫队安全研究. #Kimsuky, #Lazarus, #DPRK, #CTI https://mp.weixin.qq.com/s/h4TCYVjdLALg4XfJr1jC0w
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
November 18, 2025 at 11:30 PM
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
November 18, 2025 at 11:30 PM
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
November 18, 2025 at 1:30 PM
"Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea" published by 0x0d4y. #Lazarus, #ScoringMathTea, #DPRK, #CTI https://0x0d4y.blog/arsenal-analysis-of-a-nation-state-actor-an-in-depth-look-at-lazarus-scoringmathtea/
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
November 18, 2025 at 1:30 PM
"Inside The Shellcode Dissecting North Korean Apt43s Advanced Powershell Loader" published by Bloo. #APT43, #DPRK, #CTI https://bloo.io/blog/inside-the-shellcode-dissecting-north-korean-apt43s-advanced-powershell-loader
"Reframing Insights" published by ChollimaGroup. #ITWorker, #MoonstoneSleet, #DPRK, #CTI https://chollima-group.io/posts/reframing-insights-our-research-msmt
November 17, 2025 at 11:30 PM
"Reframing Insights" published by ChollimaGroup. #ITWorker, #MoonstoneSleet, #DPRK, #CTI https://chollima-group.io/posts/reframing-insights-our-research-msmt
"Crypto giants moved billions linked to money launderers, drug traffickers and North Korean hackers" published by ICIJ. #MoneyLaundering, #News, #DPRK, #CTI https://www.icij.org/investigations/coin-laundry/cryptocurrency-exchanges-binance-okx-money-laundering-crime/
November 17, 2025 at 3:30 PM
"Crypto giants moved billions linked to money launderers, drug traffickers and North Korean hackers" published by ICIJ. #MoneyLaundering, #News, #DPRK, #CTI https://www.icij.org/investigations/coin-laundry/cryptocurrency-exchanges-binance-okx-money-laundering-crime/
"The Deepfake Threat: Chollima APT Group Uses AI Filters to Infiltrate Crypto and Web3 Companies" published by SOCRadar. #Deepfake, #FamousChollima, #DPRK, #CTI https://socradar.io/deepfake-threat-chollima-apt-group-uses-ai-crypto/
November 17, 2025 at 1:30 PM
"The Deepfake Threat: Chollima APT Group Uses AI Filters to Infiltrate Crypto and Web3 Companies" published by SOCRadar. #Deepfake, #FamousChollima, #DPRK, #CTI https://socradar.io/deepfake-threat-chollima-apt-group-uses-ai-crypto/
"Ukrainian Pleads Guilty in DC in Laptop Farm Scheme That Generated Income for North Korean IT Workers" published by USJustice. #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/usao-dc/pr/ukrainian-pleads-guilty-dc-laptop-farm-scheme-generated-income-north-korean-it-workers
November 17, 2025 at 1:30 PM
"Ukrainian Pleads Guilty in DC in Laptop Farm Scheme That Generated Income for North Korean IT Workers" published by USJustice. #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/usao-dc/pr/ukrainian-pleads-guilty-dc-laptop-farm-scheme-generated-income-north-korean-it-workers
"Malops Challenge 8: Reversing APT 37’s RokRaT Loader" published by callyso0414. #APT37, #RokRAT, #DPRK, #CTI https://medium.com/@callyso0414/malops-challenge-9-reversing-apt-37s-rokrat-loader-7f7ad49e4662
November 17, 2025 at 1:30 PM
"Malops Challenge 8: Reversing APT 37’s RokRaT Loader" published by callyso0414. #APT37, #RokRAT, #DPRK, #CTI https://medium.com/@callyso0414/malops-challenge-9-reversing-apt-37s-rokrat-loader-7f7ad49e4662
"Tracking The Trackers Lessons From The Apt43 Kimsuky Takedown" published by Bloo. #APTDown, #Kimsuky, #DPRK, #CTI https://bloo.io/blog/tracking-the-trackers-lessons-from-the-apt43-kimsuky-takedown
November 17, 2025 at 1:30 PM
"Tracking The Trackers Lessons From The Apt43 Kimsuky Takedown" published by Bloo. #APTDown, #Kimsuky, #DPRK, #CTI https://bloo.io/blog/tracking-the-trackers-lessons-from-the-apt43-kimsuky-takedown
"Be KVM, Do Fraud" published by Wav3. #ITWorker, #PiKVM, #TinyPilot, #DPRK, #CTI https://wav3.io/be-kvm-do-fraud
November 15, 2025 at 1:30 PM
"Be KVM, Do Fraud" published by Wav3. #ITWorker, #PiKVM, #TinyPilot, #DPRK, #CTI https://wav3.io/be-kvm-do-fraud
"Justice Department Announces Nationwide Actions to Combat Illicit North Korean Government Revenue Generation" published by USJustice. #APT38, #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/opa/pr/justice-department-announces-nationwide-actions-combat-illicit-north-korean-government
November 15, 2025 at 1:30 PM
"Revisiting the Lazarus Operator: Mapping Park Jin Hyok’s Digital Footprint Using StealthMole" published by StealthMole. #APT38, #Lazarus, #DPRK, #CTI https://stealthmole-intelligence-hub.blogspot.com/2025/11/revisiting-lazarus-operator-mapping.html
November 15, 2025 at 1:30 PM
"Revisiting the Lazarus Operator: Mapping Park Jin Hyok’s Digital Footprint Using StealthMole" published by StealthMole. #APT38, #Lazarus, #DPRK, #CTI https://stealthmole-intelligence-hub.blogspot.com/2025/11/revisiting-lazarus-operator-mapping.html
"Cross-Chain TxDataHiding Crypto Heist: A Very Chainful Process (Part 3)" published by RansomISAC. #EtherHiding, #FamousChollima, #DPRK, #CTI https://ransom-isac.org/blog/cross-chain-txdatahiding-crypto-heist/
November 15, 2025 at 1:30 PM
"Cross-Chain TxDataHiding Crypto Heist: A Very Chainful Process (Part 3)" published by RansomISAC. #EtherHiding, #FamousChollima, #DPRK, #CTI https://ransom-isac.org/blog/cross-chain-txdatahiding-crypto-heist/
"Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery" published by NVISO. #ContagiousInterview, #InvisibleFerret, #DPRK, #CTI https://blog.nviso.eu/2025/11/13/contagious-interview-actors-now-utilize-json-storage-services-for-malware-delivery/
November 13, 2025 at 1:30 PM
"Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery" published by NVISO. #ContagiousInterview, #InvisibleFerret, #DPRK, #CTI https://blog.nviso.eu/2025/11/13/contagious-interview-actors-now-utilize-json-storage-services-for-malware-delivery/
"2025년 10월 APT 그룹 동향 보고서" published by Ahnlab. #FamousChollima, #Larva-25004, #Trend, #DPRK, #CTI https://asec.ahnlab.com/ko/90993/
November 13, 2025 at 1:30 PM
"2025년 10월 APT 그룹 동향 보고서" published by Ahnlab. #FamousChollima, #Larva-25004, #Trend, #DPRK, #CTI https://asec.ahnlab.com/ko/90993/