兩組北韓駭客利用竄改與有更新漏洞的遠端安全存取軟體,散布惡意程式
支付動態 · 2024-08-07
韓國國家網路安全中心(NCSC)提出警告,發生在今年1月、4月由兩個北韓駭客組織發動的網路攻擊,都鎖定韓國營造業而來,研判這些資安事故有所關連
若是使用者的電腦感染了竊資軟體,駭客將竊取瀏覽器儲存帳密、cookie、上網記錄、書籤等個人資料,以及GPKI憑證、SSH金鑰、Filezilla的組態設定。NCSC透露,這起事故的受害範圍,涵蓋當地營造業者、公共機構、地方政府機關。
另一起資安事故則是發生在今年4月,駭客組織Andariel鎖定韓國國防VPN軟體VPN and server security的通訊協定,觸發特定的弱點,而能推送假的軟體更新,從而散布惡意程式DoraRAT。NCSC指出,這起攻擊行動的目標,是營造業者與機械器具公司。
這項弱點可讓攻擊者利用封包欺騙使用者的電腦,從而誤導電腦合法伺服器已有更新檔案可下載,而能夠部署惡意程式。
駭客利用DoraRAT竊取大型檔案,其中包含機械與設備設計文件,並將其傳送到C2伺服器。
Popular articles
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
Indiana online casino bill stalls in House committee
Regulation
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
Institutional Academy that exceeded expectations marked the opening of GAT CDMX
Online Game
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
Are you ready to maximize your earnings? Try ProPush.me Constructor!
Marketing
Kazakhstan plans to penalise online casino promotions
Regulation
GAT CDMX 2025 Institutional Academy: Leaders and Experts Analyze the Present and Future of the Gaming Industry in Mexico and Lat
Sports Game
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
