Tag

North Korea

3 briefs RSS

Lazarus Group Targeting AI Models to Enhance Cryptocurrency Theft

The Lazarus Group is targeting AI models through supply chain attacks, contractor misuse, and fraudulent hiring to improve their ability to steal cryptocurrency and fund weapons programs.

Claude Mythos +1 Lazarus Group +4 lazarus cryptocurrency ai supply-chain north-korea

2r 1t May 2, 2026

critical threat

Drift Protocol $280M Crypto Theft Linked to North Korean Hackers

2 rules 1 TTP

The Drift Protocol suffered a $280 million crypto theft orchestrated by North Korean hackers who spent six months building an in-person operational presence within the Drift ecosystem, engaging with contributors at crypto conferences and via Telegram.

UNC4736 (Lazarus Group) drift-protocol crypto-theft north-korea unc4736 lazarus-group social-engineering supply-chain

2r 1t Apr 6, 2026

high threat

NICKEL ALLEY Targeting Developers with Fake Job Opportunities

2 rules 5 TTPs 4 IOCs

NICKEL ALLEY, a North Korean threat group, is targeting technology professionals with fake job opportunities and malicious code repositories to deliver malware like PyLangGhost RAT and BeaverTail, aiming to steal cryptocurrency.

NICKEL ALLEY North Korea cryptocurrency supply-chain

2r 5t 4i Mar 25, 2026