all InfoSec news
Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company
Aug. 7, 2023, 10:06 a.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
By Tom Hegel and Aleksandar Milenkoski
Executive Summary
- SentinelLabs identified an intrusion into the Russian defense industrial base, specifically a missile engineering organization NPO Mashinostroyeniya.
- Our findings identify two instances of North Korea related compromise of sensitive internal IT infrastructure within this same Russian DIB organization, including a specific email server, alongside use of a Windows backdoor dubbed OpenCarrot.
- Our analysis attributes the email server compromise to the ScarCruft threat actor. We also identify the separate use of a Lazarus …
arms base compromise defense defense industrial base dib engineering executive findings identify industrial industrial base infrastructure internal intrusion it infrastructure korea malware analysis missile north north korea organization russian sentinellabs tom hegel
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
Principal - Cyber Risk and Assurance - Infra/Network
@ GSK | Bengaluru Luxor North Tower
Staff Security Engineer
@ Airwallex | AU - Melbourne
Chief Information Security Officer
@ Australian Payments Plus | Sydney, New South Wales, Australia
TW Test Automation Engineer (Access Control & Intrusion Systems)
@ Bosch Group | Taipei, Taiwan
Consultant infrastructure sécurité H/F
@ Hifield | Sèvres, France
SOC Analyst
@ Wix | Tel Aviv, Israel