SECURITYTHE HACKER NEWS
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
The North Korean state-sponsored hacking group ScarCruft (APT37) used spear-phishing emails impersonating Microsoft Account security alerts to deploy NarwhalRAT malware, as reported by Genians Security Center. The attack aimed to exploit concerns over possible account security issues.
Mentioned
Related Signal
Adjacent reporting
- MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack
- 'FrostyNeighbor' APT Carefully Targets Govt Orgs in Poland, Ukraine
- Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels
- Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT
- Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
- North Korea Uses ClickFix to Target macOS Users' Data