Pyongyang’s intelligence services have been busy in cyberspace. Hacktivists exaggerate the effects of their attacks on OT. Ghostwriter is back. A twice-told tale: ineffective cyberwar campaigns.
DPRK threat actor Kimsuky uses a Chrome extension to exfiltrate emails, while ScarCruft prospects South Korean organizations. Hacktivists' claims of attacks on OT networks may be overstated. Ghostwriter remains active in social engineering attempts to target Ukrainian refugees. Joe Carrigan has cyber crime by the numbers. Our guest is Christian Sorensen from SightGain with analysis of the cyber effects of Russia’s war.
North Korean hackers using Chrome extensions to steal Gmail emails (BleepingComputer)
Joint Cyber Security Advisory (Korean) (BundesamtfuerVerfassungsschutz)
The 5×5—Conflict in Ukraine's information environment (Atlantic Council)
CommonMagic APT gang attacking organisations in Ukraine (Tech Monitor)