New Lazarus social engineering campaign targets developers | allinfosecnews.com

July 21, 2023, 5:10 p.m. | SC Staff

SC Magazine feed for Strategy www.scmagazine.com

Malicious NPM package dependencies and repository invitations have been leveraged by North Korean state-backed hacking operation Lazarus Group, also known as TraderTraitor and Jade Sleet, in limited social engineering attacks against cybersecurity, cryptocurrency, blockchain, and online gambling developers in GitHub, reports BleepingComputer.

attacks bleepingcomputer blockchain campaign cryptocurrency cybersecurity dependencies developers engineering gambling github hacking lazarus lazarus group malicious malicious npm north north korean npm npm package package reports repository social social engineering social engineering attacks state threat intelligence tradertraitor

More from www.scmagazine.com / SC Magazine feed for Strategy

Ransomware attack disrupts Kansas city 4 hours ago | www.scmagazine.com

attack bleepingcomputer city city of wichita +11

Dozens of organizations worldwide claimed to be compromised by LockBit 4 hours ago | www.scmagazine.com

claim compromised cybernews dark +12

Four ways to swing for the fences and simplify vulnerability management metrics 7 hours ago | www.scmagazine.com

game management metrics security +5

RSAC 2024: AI adds new dimension to virus detection 7 hours ago | www.scmagazine.com

aiml context detection expose +10

RSAC 2024: U.S. Secretary of State Blinken advocates solidarity, not sovereignty, for cyber 15 hours ago | www.scmagazine.com

advocates aiml blinken can +15

Hacking AI Bias with Human Techniques - Keith Hoodlet - ASW #284 21 hours ago | www.scmagazine.com

ai bias aiml application security bias +4

RSAC 2024: How to use AI without getting in trouble 22 hours ago | www.scmagazine.com

aiml don governance risk and compliance laws +7

Say Easy, Do Hard - Train How You Fight, Part 1 - BSW #349 1 day ago | www.scmagazine.com

easy hard incident response train +1

Say Easy, Do Hard - Train How You Fight, Part 2 - BSW #349 1 day ago | www.scmagazine.com

easy hard incident response train +1

Product Regulatory Compliance Specialist

@ Avery Dennison | Oegstgeest, Netherlands

View on infosec-jobs.com

Cyber Security Analyst

@ FinClear | Melbourne, Australia

View on infosec-jobs.com

Senior Application Security Manager, United States-(Virtual)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr

View on infosec-jobs.com

Vice President - Information Security Management - FedRAMP

@ JPMorgan Chase & Co. | Chicago, IL, United States

View on infosec-jobs.com

Vice President, Threat Intelligence & AI

@ Arctic Wolf | Remote - Minnesota

View on infosec-jobs.com

Cybersecurity Analyst

@ Resource Management Concepts, Inc. | Dahlgren, Virginia, United States

View on infosec-jobs.com