Lazarus Group Archives

In this picture taken near the truce village of Panmunjom inside the demilitarized zone (DMZ) separating the two Koreas, a bird flies near a North Korean flag fluttering in the wind at the propaganda village of Gijungdong in North Korea on October 4, 2022. (Photo by ANTHONY WALLACE/AFP via Getty Images)

Lazarus Group deceives developers with 6 new malicious npm packages

Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.

2 days ago By Matt Kapko

An image showing the Garantex site had been seized by law enforcement.

Russian crypto exchange Garantex seized in international law enforcement operation

The Department of Justice also indicted two men tied to the exchange.

Mar 7, 2025 By Greg Otto

Crypto analysts stunned by Lazarus Group’s capabilities in $1.46B Bybit theft

The amount stolen last week surpasses what the group was able to steal in all of 2024.

Feb 25, 2025 By Matt Kapko

bitcoin trading, cryptocurrency, crypto mixing, FinCEN, Treasury, ransomware proceeds — (Getty Images)

Appeals court tosses sanctions on Tornado Cash crypto mixer

The mixer was sanctioned after a North Korea hacking group used the software to launder more than $455 million.

Nov 27, 2024 By Greg Otto

N. Korean hacker silhouette with North Korean Flag. (Getty Images)

North Korean-linked hackers were caught experimenting with new macOS malware

Researchers can’t tell if the malware was used in a campaign, or North Korean operatives were caught before they could deploy it in the wild.

Nov 12, 2024 By Christian Vasquez

Flag of the Democratic People’s Republic of Korea (Manuel Augusto Moreno)

North Korean hacking ops continue to exploit Log4Shell

Two years after it was disclosed, the Log4j vulnerability continues to enable North Korean hacking operations.

Dec 11, 2023 By AJ Vicens

Flag of the Democratic People’s Republic of Korea. (Manuel Augusto Moreno/Getty Images)

North Korean hackers posed as Meta recruiter on LinkedIn

Targets of the operation were given phony coding challenges that delivered a range of malware including a previously-unseen backdoor.

Sep 29, 2023 By AJ Vicens

Kim Il Sung Square in Pyongyang. (Getty Images)

‘They outsmarted us.’ 3CX CEO acknowledges mistakes handling potential supply chain cyberattack

"We have a security team, we do our own pentesting, we've got software scanners, we got a CSO ... Nonetheless, they outsmarted us."

Mar 30, 2023 By Christian Vasquez AJ Vicens

Flags of the Workers’ Party of Korea, the foundational political party of the Democratic People’s Republic of Korea. (Getty Images)

Supply chain cyberattack with possible links to North Korea could have thousands of victims globally

An attack that could be the work of the notorious Lazarus Group attempted to install infostealer malware inside corporate networks.

Mar 29, 2023 By AJ Vicens

Researchers say that a North Korean hacking group known for cryptocurrency heists is widening its aim (Getty Images)

North Korean cryptocurrency hackers expand target list

North Korean hackers known for cryptocurrency heists are expanding their targets to include education, government and healthcare, according to researchers tracking the group. The activity could be…

Jan 25, 2023 By Tonya Riley