#ITWorker - TechHub

Recent searches

Search options

Only available when logged in.

2 posts2 participants0 posts today

lazarusholic @lazarusholic@infosec.exchange

"Maryland Man Pleads Guilty to Conspiracy to Commit Wire Fraud" published by USJustice. #ITWorker, #News, #DPRK, #CTI https://www.justice.gov/opa/pr/maryland-man-pleads-guilty-conspiracy-commit-wire-fraud

www.justice.gov · 4dMaryland Man Pleads Guilty to Conspiracy to Commit Wire FraudMinh Phuong Ngoc Vong, 40, of Bowie, Maryland, pleaded guilty today to conspiracy to commit wire fraud in connection with a scheme whereby he conspired with unknown individuals, including John Doe, also known as William James, a foreign national living in Shenyang, China, to defraud U.S. companies into hiring Vong as a remote software developer.

lazarusholic @lazarusholic@infosec.exchange

"DPRK IT Workers in Open Source and Freelance Platforms" published by Ketman. #ITWorker, #DPRK, #CTI https://www.ketman.org/dprk-it-workers-in-freelance-platform-onlyDust.html

www.ketman.orgDPRK IT Workers in Open Source and Freelance PlatformsA cluster of actors discovered in onlyDust.com freelancer platform and beyond

lazarusholic @lazarusholic@infosec.exchange

"How We Identified Fake North Korean IT Workers Using Identity Matching" published by SpyCloud. #ITWorker, #DPRK, #CTI https://spycloud.com/blog/how-we-identified-fake-north-korean-it-workers/

SpyCloud · Apr 3How We Identified Fake North Korean IT Workers Using Identity MatchingSee how malware infection logs can help organizations spot fake North Korean IT workers engaging in hiring fraud.

lazarusholic @lazarusholic@infosec.exchange

"Russian accent in the DPRK related cyber operations" published by Ketman. #ITWorker, #DPRK, #CTI https://www.ketman.org/russia-dprk-soft-connection.html

www.ketman.orgRussian accent in the DPRK related cyber operationsUnusual Discoveries in DPRK IT Worker Profiles connected to Russia

lazarusholic @lazarusholic@infosec.exchange

"DPRK IT Workers Expanding in Scope and Scale" published by Google. #ITWorker, #Trend, #DPRK, #CTI https://cloud.google.com/blog/topics/threat-intelligence/dprk-it-workers-expanding-scope-scale/

Google Cloud BlogDPRK IT Workers Expanding in Scope and Scale | Google Cloud BlogWe have observed DPRK IT worker operations expanding beyond the U.S. and into Europe.

lazarusholic @lazarusholic@infosec.exchange

"Demystifying the North Korean Threat" published by Paradigm. #AppleJeus, #ITWorker, #Lazarus, #Trend, #DangerousPassword, #TraderTraitor, #DPRK, #CTI https://www.paradigm.xyz/2025/03/demystifying-the-north-korean-threat

Paradigm · Mar 31Demystifying the North Korean ThreatThere’s more to the DPRK than just Lazarus Group.

lazarusholic @lazarusholic@infosec.exchange

"DPRK IT Worker Scam: Mitigation Steps for Hiring Teams" published by NISOS. #ITWorker, #DPRK, #CTI https://nisos.com/blog/dprk-it-worker-scam-mitigation/

Nisos · Mar 27DPRK IT Worker Scam: Mitigation Steps for Hiring TeamsNorth Korean operatives are using fake identities to land remote IT jobs. Learn how to spot red flags, strengthen your vetting process, and mitigate the DPRK IT worker scam.

lazarusholic @lazarusholic@infosec.exchange

"North Korean IT Workers Exploiting GitHub to Target Organizations Worldwide" published by Rewterz. #ITWorker, #DPRK, #CTI https://rewterz.com/threat-advisory/north-korean-it-workers-exploiting-github-to-target-organizations-worldwide

lazarusholic @lazarusholic@infosec.exchange

"The ultimate insider threat: North Korean IT workers" published by Mandiant. #ITWorker, #DPRK, #CTI https://cloud.google.com/transform/ultimate-insider-threat-north-korean-it-workers

Google Cloud BlogThe ultimate insider threat: North Korean IT workers | Google Cloud BlogEmployers can take concrete steps to mitigate the risk of North Korean IT workers. Here’s what business leaders need to know.

lazarusholic @lazarusholic@infosec.exchange

"Tracking Threat Actors: How Infrastructure Analysis Reveals Cyber Attack Patterns" published by Kudelskisecurity. #ITWorker, #DPRK, #CTI https://research.kudelskisecurity.com/2025/03/05/tracking-threat-actors-how-infrastructure-analysis-reveals-cyber-attack-patterns/

Kudelski Security Research · Mar 5Tracking Threat Actors: How Infrastructure Analysis Reveals Cyber Attack PatternsUnmasking Cyber Threats: How Infrastructure Tracking Aids Attribution The main subject of this article is to present our methods for clustering and identifying the purpose of an infrastructure. The…

lazarusholic @lazarusholic@infosec.exchange

"DPRK IT Fraud Network Uses GitHub to Target Global Companies" published by NISOS. #ITWorker, #DPRK, #CTI https://nisos.com/research/dprk-github-employment-fraud/

Nisos · Mar 4DPRK IT Fraud Network Uses GitHub to Target Global CompaniesNorth Korean IT workers are using GitHub to create and reuse fake developer personas, securing remote jobs at global companies. Read the full analysis to understand the risks and indicators of this emerging employment fraud scheme.

lazarusholic @lazarusholic@infosec.exchange

"Inside the Scam: North Korea’s IT Worker Threat" published by RecordedFuture. #BeaverTail, #ITWorker, #InvisibleFerret, #OtterCookie, #PurpleBravo, #TAG-121, #TAG-120, #DPRK, #CTI https://www.recordedfuture.com/research/inside-the-scam-north-koreas-it-worker-threat

lazarusholic @lazarusholic@infosec.exchange

"Cybercrime: A Multifaceted National Security Threat" published by Google. #APT38, #APT43, #APT45, #ITWorker, #Trend, #UNC1069, #UNC3782, #UNC4899, #DPRK, #CTI https://cloud.google.com/blog/topics/threat-intelligence/cybercrime-multifaceted-national-security-threat

Google Cloud BlogCybercrime: A Multifaceted National Security Threat | Google Cloud BlogGoogle Threat Intelligence Group discusses the current state of cybercrime, and why it must be considered a national security threat.

lazarusholic @lazarusholic@infosec.exchange

"Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence" published by TheRecord. #ITWorker, #News, #DPRK, #CTI https://therecord.media/arizona-woman-pleads-guilty-north-korean-laptop-farm

therecord.mediaArizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentenceA U.S. citizen pleaded guiltyTuesday to playing a role in a wide-ranging scheme that allowed multiple North Korean nationals to collect paychecks from more than 300 U.S. companies.

lazarusholic @lazarusholic@infosec.exchange

"미 기업 위장취업 시도 북 해커 접촉해 보니…" published by RFA. #ITWorker, #News, #DPRK, #CTI https://www.rfa.org/korean/in_focus/nk_nuclear_talks/north-korea-it-workers-hackers-investigation-fbi-02052025155717.html

lazarusholic @lazarusholic@infosec.exchange

"North Korean IT Farms IoC Document and Recommendations" published by FarnsworthIntelligence. #ITWorker, #DPRK, #CTI https://www.farnsworthintelligence.com/north-korean-it-farms-ioc-document-and-recommendations

www.farnsworthintelligence.comNorth Korean IT Farms IoC Document and RecommendationsAfter our successful infiltration of a North Korean IT Farm we are releasing everything we know about their operations to help American companies defend their infrastructure and data!

lazarusholic @lazarusholic@infosec.exchange

"USA v. APPROXIMATELY 942,462.845 USDT" published by USCOURTS. #ITWorker, #DPRK, #CTI https://storage.courtlistener.com/recap/gov.uscourts.dcd.276610/gov.uscourts.dcd.276610.1.0.pdf

lazarusholic @lazarusholic@infosec.exchange

"Adversarial Misuse of Generative AI" published by Google. #APT43, #ITWorker, #DPRK, #CTI https://cloud.google.com/blog/topics/threat-intelligence/adversarial-misuse-generative-ai

Google Cloud BlogAdversarial Misuse of Generative AI | Google Cloud BlogWe share our findings on government-backed and information operations threat actor use of the Gemini web application.

lazarusholic @lazarusholic@infosec.exchange

"North Korean IT Workers Conducting Data Extortion" published by USFBI. #ITWorker, #DPRK, #CTI https://www.ic3.gov/PSA/2025/PSA250123

www.ic3.govInternet Crime Complaint Center (IC3) | North Korean IT Workers Conducting Data Extortion

lazarusholic @lazarusholic@infosec.exchange

"Two North Korean Nationals and Three Facilitators Indicted for Multi-Year Fraudulent Remote Information Technology Worker Scheme that Generated Revenue for the Democratic People’s Republic of Korea" published by USJustice. #ITWorker, #DPRK, #CTI https://www.justice.gov/opa/pr/two-north-korean-nationals-and-three-facilitators-indicted-multi-year-fraudulent-remote

www.justice.gov · Jan 23Two North Korean Nationals and Three Facilitators Indicted for Multi-Year Fraudulent Remote Information Technology Worker Scheme that Generated Revenue for the Democratic People’s Republic of KoreaThe Justice Department today announced the indictment of North Korean nationals Jin Sung-Il (진성일) and Pak Jin-Song (박진성), Mexican national Pedro Ernesto Alonso De Los Reyes, and U.S. nationals Erick Ntekereze Prince and Emanuel Ashtor for a fraudulent scheme to obtain remote information technology (IT) work with U.S. companies that generated revenue for the Democratic People’s

Drag & drop to upload