DPRK hackers create fake LinkedIn profiles so good that even experts are fooled



News DPRK hackers create fake LinkedIn profiles so good that even experts are fooled North Korea’s Lazarus Group used elaborate personas and encrypted chats to break into major pharma company Nils Weisensee April 29, 2021 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON NK Pro In a social engineering attack against a major pharmaceutical company, North Korean hackers used a fake LinkedIn profile with hundreds of connections to trick a computer expert into running malicious code that eventually compromised the corporate network, cybersecurity firm Positive Technologies disclosed this week. The Sept. 2020 attack described in the report closely resembles malware campaigns by the DPRK-linked Lazarus Group dubbed “Operation North Star” and “Operation Dream Job,” and stands out with a remarkably well-prepared LinkedIn profile that would be difficult to identify as malicious even by cautious employees. “It’s clear that North Korean Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01How long-range strikes on Russia could impact North Korean troop deployments 02How North Korean hackers and IT workers collude to cause chaos 03What pro-Trump think tanks reveal about his likely North Korea policy priorities 04Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 05All the question marks hanging over Trump’s approach to North Korea in term two 06Time almost up for North Korea’s plan to launch 3 military satellites in 2024 07Trump return rekindles prospects of North Korea talks, but Russia stands in way 08How China could benefit from North Korea’s troop deployment to Ukraine

News

DPRK hackers create fake LinkedIn profiles so good that even experts are fooled

North Korea’s Lazarus Group used elaborate personas and encrypted chats to break into major pharma company

Nils Weisensee April 29, 2021

DPRK hackers create fake LinkedIn profiles so good that even experts are fooled

NK Pro

In a social engineering attack against a major pharmaceutical company, North Korean hackers used a fake LinkedIn profile with hundreds of connections to trick a computer expert into running malicious code that eventually compromised the corporate network, cybersecurity firm Positive Technologies disclosed this week.

The Sept. 2020 attack described in the report closely resembles malware campaigns by the DPRK-linked Lazarus Group dubbed “Operation North Star” and “Operation Dream Job,” and stands out with a remarkably well-prepared LinkedIn profile that would be difficult to identify as malicious even by cautious employees.

“It’s clear that North Korean

01How long-range strikes on Russia could impact North Korean troop deployments
02How North Korean hackers and IT workers collude to cause chaos
03What pro-Trump think tanks reveal about his likely North Korea policy priorities
04Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump.
05All the question marks hanging over Trump’s approach to North Korea in term two
06Time almost up for North Korea’s plan to launch 3 military satellites in 2024
07Trump return rekindles prospects of North Korea talks, but Russia stands in way
08How China could benefit from North Korea’s troop deployment to Ukraine

DPRK hackers create fake LinkedIn profiles so good that even experts are fooled

LATEST ANALYSIS

Similar Articles

About the Author

Nils Weisensee