Ransomware used by threat actor group DEV-0530, attributed by MSTIC to North Korean origin.
|2023-02-09 ⋅ |
#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities
Dtrack MagicRAT Maui Ransomware SiennaBlue SiennaPurple Tiger RAT YamaBot
|2022-08-04 ⋅ Blackberry ⋅ |
North Korean H0lyGh0st Ransomware Has Ties to Global Geopolitics
|2022-07-14 ⋅ Microsoft ⋅ |
North Korean threat actor (H0lyGh0st /DEV-0530) targets small and midsize businesses with H0lyGh0st ransomware
There is no Yara-Signature yet.