How North Korean Hackers Turn Deepfake Zoom Calls Into Crypto Heists

Google’s Mandiant reports that a North Korea-linked hacker group used fake Zoom calls to deploy malware against a crypto firm ...

North Korean hackers use AI-generated video to deliver malware for macOS and Windows

UNC1069 uses a mix of Business Telegram Compromise, deepfakes, and malware.
CCN on MSN

Google Cloud sounds the alarm: North Korea’s new AI crypto malware is draining wallets

Google Cloud’s Mandiant has identified a new North Korea-linked malware campaign targeting crypto companies, developers, and ...
The Hacker News

Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms

Mandiant reports ShinyHunters-linked vishing attacks abusing MFA and SSO to breach SaaS apps, steal data, and extort ...
SecurityWeek

ShinyHunters-Branded Extortion Activity Expands, Escalates

Mandiant has observed an increase in ShinyHunters-branded attacks using evolved vishing and credential harvesting.
The Hacker News

North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations

UNC1069 targets crypto firms via Telegram lures, fake Zoom meetings, and multi-stage malware to steal credentials, browser data, and funds.

Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
Dark Reading

North Korea's UNC1069 Hammers Crypto Firms With AI

In moving away from traditional banks to focus on Web3 companies, the threat actor is leveraging LLMs, deepfakes, legitimate platforms, and ClickFix.
Virginia Business

Google completes $5.4B Mandiant acquisition

Google LLC has completed its acquisition of Reston-based cybersecurity company Mandiant Inc. in an all-cash transaction valued at $5.4 billion. Google is paying $23 per share for Mandiant, which is ...