Nation-state hacking groups from Iran, China, and North Korea are increasingly using AI tools like Google's Gemini to enhance offensive…
Read More »North Korean
Entity category: location
Illicit cryptocurrency activity surged to a record $154 billion in 2025, a 162% annual increase, driven by sophisticated criminal networks…
Read More »The RondoDox botnet is actively exploiting the critical React2Shell vulnerability (CVE-2025-55182) to compromise Next.js servers, deploying malware and cryptocurrency miners.…
Read More »North Korean state-sponsored hackers stole over $2 billion in cryptocurrency in 2025, a 51% increase, by pivoting to fewer, more…
Read More »A critical vulnerability in FortiWeb (CVE-2025-58034) is being actively exploited due to a stealth patch that left many administrators unaware…
Read More »Five individuals pleaded guilty for helping North Korean IT workers infiltrate over 100 U.S. companies by bypassing hiring checks and…
Read More »Five individuals pleaded guilty for helping North Korean nationals fraudulently obtain remote IT jobs at U.S. companies, generating over $2.2…
Read More »North Korean hackers are using Google's Find Hub service to remotely wipe Android devices and track locations, primarily targeting South…
Read More »The U.S. imposed sanctions on two banks and eight individuals for laundering funds from North Korean cybercrime and fraudulent IT…
Read More »North Korea's Lazarus hacking group targeted European UAV defense firms through a deceptive recruitment campaign called Operation DreamJob, aiming to…
Read More »North Korean hackers have stolen over $2 billion in cryptocurrency in 2025, primarily through a major breach at Bybit and…
Read More »A North Korean hacking group is using EtherHiding, a blockchain-based method that embeds malware in smart contracts, making the blockchain…
Read More »State-sponsored hackers, including a North Korean group, are now hiding malware within public cryptocurrency blockchains, creating a resilient and nearly…
Read More »North Korean IT workers have long infiltrated Western tech firms, generating billions for their government, and have recently expanded into…
Read More »NSO Group, the developer of Pegasus spyware, is nearing acquisition by a U.S. consortium led by Robert Simonds, pending Israeli…
Read More »A North Korean hacking group used AI-generated military IDs in phishing emails to impersonate South Korean defense personnel, enhancing the…
Read More »AI assistants like Claude are being weaponized to automate and enhance sophisticated cyberattacks, including network infiltration and extortion campaigns. Attackers…
Read More »TRM Labs has launched Beacon Network, a real-time intelligence-sharing platform to combat illicit cryptocurrency movements and digital financial crime, addressing…
Read More »The U.S. imposed sanctions on three individuals and a trading company (Korea Sobaeksu) for funneling funds from IT worker fraud…
Read More »Businesses face rising employment fraud, with fake applicants using AI-generated documents and synthetic identities to bypass hiring checks, prompting Socure…
Read More »


















