Suspected North Korean hackers deploy corrupt Android app in attack on reporter



News Suspected North Korean hackers deploy corrupt Android app in attack on reporter Researchers say powerful malware comes disguised as fake app, highlighting overlap with past DPRK cyber campaigns Ethan Jewell December 30, 2022 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON A smartphone infected with malware \| Image: OpenAI's DALL-E 2 Suspected North Korean hackers spread a convincing but malware-laced Android application that provides sweeping control over victims’ devices, in a targeted attack against a journalist covering the DPRK, Seoul-based non-profit Interlab told NK Pro. The spyware, which the researchers dub RambleOn in a new report, is disguised as a secure messaging application, but in reality fetches malicious payloads from Russian and Swiss cloud service providers. NK Pro obtained a sample of the malware after an individual messaged Korea Risk Group CEO Chad O’Carroll and claimed to have exclusive information about North Korea’s widely Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01What Yoon Suk-yeol’s martial law gambit means for the Korean Peninsula 02Crop data suggests North Korea enjoyed strong harvest despite summer floods 03North Korea appears to start work on long-stalled Russia border bridge project 04Why a reported rise in North Korean wages won’t do much to improve welfare 05Top North Korean officials get bodyguards in likely security and status upgrade 06How Trump could reshape US strategy for countering North Korean cyber threats 07North Korea reveals new vertical take-off drones amid ‘modern warfare’ push 08How long-range strikes on Russia could impact North Korean troop deployments

News

Suspected North Korean hackers deploy corrupt Android app in attack on reporter

Researchers say powerful malware comes disguised as fake app, highlighting overlap with past DPRK cyber campaigns

Ethan Jewell December 30, 2022

Suspected North Korean hackers deploy corrupt Android app in attack on reporter

A smartphone infected with malware | Image: OpenAI's DALL-E 2

Suspected North Korean hackers spread a convincing but malware-laced Android application that provides sweeping control over victims’ devices, in a targeted attack against a journalist covering the DPRK, Seoul-based non-profit Interlab told NK Pro.

The spyware, which the researchers dub RambleOn in a new report, is disguised as a secure messaging application, but in reality fetches malicious payloads from Russian and Swiss cloud service providers.

NK Pro obtained a sample of the malware after an individual messaged Korea Risk Group CEO Chad O’Carroll and claimed to have exclusive information about North Korea’s widely

01What Yoon Suk-yeol’s martial law gambit means for the Korean Peninsula
02Crop data suggests North Korea enjoyed strong harvest despite summer floods
03North Korea appears to start work on long-stalled Russia border bridge project
04Why a reported rise in North Korean wages won’t do much to improve welfare
05Top North Korean officials get bodyguards in likely security and status upgrade
06How Trump could reshape US strategy for countering North Korean cyber threats
07North Korea reveals new vertical take-off drones amid ‘modern warfare’ push
08How long-range strikes on Russia could impact North Korean troop deployments

Suspected North Korean hackers deploy corrupt Android app in attack on reporter

LATEST ANALYSIS

Similar Articles

About the Author

Ethan Jewell