Skip to content
TheCyberThrone

Thinking Security ! Always

  • Latest Story
  • AI
  • Application Security
  • Cloud Security
    • AWS Security
    • Azure Security
    • Google Security
  • Container Security
  • Data Breaches
  • Email Security
  • Mobile Security
  • Security Acquisition
  • ZeroDay
  • Certification Guide
    • Cloud Certifications
    • Network Certifications
    • Security Certifications
  • Security NewsLetter
  • About Author
  • facebook.com
  • twitter.com
  • t.me
  • instagram.com
  • youtube.com
Subscribe

North Korea

  • Home
  • North Korea
UNC4736 DRIFT: The Governance Failure Inside Multisig

UNC4736 DRIFT: The Governance Failure Inside Multisig

The Incident (Raw Facts) On April 1, 2026, Drift Protocol (a Solana-based derivatives exchange) suffered a $285 million breach in what forensic teams attributed with medium-high confidence to UNC4736, a…
Posted by PravinKarthik April 6, 2026
North Korean PurpleBravo Targets Developers in Contagious Interview Campaign

North Korean PurpleBravo Targets Developers in Contagious Interview Campaign

PurpleBravo, a North Korean state-sponsored threat group, has escalated its cyber espionage efforts by targeting software developers through fake job interviews. Linked to the "Contagious Interview" campaign first noted in…
Posted by PravinKarthik February 1, 2026
Kimsuky leaverages DMARC Misconfiguration in its Phishing Campaign

Kimsuky leaverages DMARC Misconfiguration in its Phishing Campaign

Security researchers from Barracuda has uncovered that the North Korean (APT) group Kimsuky has been leveraging DMARC misconfigurations to run highly targeted spear-phishing campaigns, threatening both private and public sectors…
Posted by PravinKarthik October 8, 2024
North Korean Citrine Sleet behind CVE-2024-7971 exploitation

North Korean Citrine Sleet behind CVE-2024-7971 exploitation

Microsoft’s threat intelligence team discovered that a known North Korean threat actor exploiting a Chrome remote code execution flaw patched by Google earlier this month. The vulnerability, tracked as CVE-2024-7971,…
Posted by PravinKarthik September 1, 2024
Microsoft Flaw CVE-2024-38193 exploited by Lazarus Group

Microsoft Flaw CVE-2024-38193 exploited by Lazarus Group

During this month patch Tuesday, microsoft addressed nearly 90 flaws, some of which have already been exploited by hackers. One specific vulnerability, CVE-2024-38193 with a CVSS score of 7.8, is…
Posted by PravinKarthik August 20, 2024
Hacker turned Employee got recruited by KnowBe4

Hacker turned Employee got recruited by KnowBe4

KnowBe4, a US-based security vendor, revealed that it unwittingly hired a North Korean hacker who attempted to load malware into the company's network. KnowBe4 operates in 11 countries and is…
Posted by PravinKarthik July 27, 2024
Money Heist by North Korean DPRK in 2023

Money Heist by North Korean DPRK in 2023

A recent report shows that the North Korean hackers stole at least $600m in cryptocurrency in 2023, around a third of the total value of such heists. Despite the heists,…
Posted by PravinKarthik January 8, 2024
North Korean Threat Actors leverages TeamCity Security Bug

North Korean Threat Actors leverages TeamCity Security Bug

Researchers at Microsoft have discovered that North Korean nation-state threat actors tracked as Diamond Sleet and Onyx Sleet are exploiting a remote code execution vulnerability affecting multiple versions of the…
Posted by PravinKarthik October 22, 2023

Posts pagination

1 2 3 … 5 Next page
Trending post
  • CISSP Executive Briefing: Complexity Debt
    CISSP Executive Briefing: Complexity Debt
  • TheCyberThrone Universe — Episode 3
    TheCyberThrone Universe — Episode 3
  • The End of CVSS: Why CISA Just Rewrote the Rules of Vulnerability Management
    The End of CVSS: Why CISA Just Rewrote the Rules of Vulnerability Management
  • CVE-2026-20253 — Splunk Enterprise Unauthenticated RCE
    CVE-2026-20253 — Splunk Enterprise Unauthenticated RCE
  • OptinMonster Supply Chain Attack — CDN Poisoning at Scale
    OptinMonster Supply Chain Attack — CDN Poisoning at Scale
  • Oracle PeopleSoft Zero-Day Exploited by ShinyHunters — 100+ Organizations Breached
    Oracle PeopleSoft Zero-Day Exploited by ShinyHunters — 100+ Organizations Breached
Archives

Click to Subscribe

Follow Us

  • Facebook
  • Twitter
  • Instagram
Copyright 2026 — TheCyberThrone. All rights reserved. Bloghash WordPress Theme
Scroll to Top