North Korean Hacker Group Moonstone Sleet: Fake Companies, Trojanized Tools, and Ransomware Galore
Moonstone Sleet, the latest North Korean cyber threat, has been targeting companies with fake job offers, trojanized tools, and even a malicious tank game. Microsoft’s investigation reveals the group’s use of custom ransomware and espionage tactics for financial gain.
Hot Take:
Moonstone Sleet: the North Korean threat actor that’s taking multitasking to a whole new (and very concerning) level. From fake companies and job offers to malicious games and custom ransomware, these guys are the Swiss Army knife of cyber threats. And let’s be honest, who knew North Korea was into tank games?
Key Points:
- Microsoft identifies new North Korean threat actor, Moonstone Sleet, formerly known as Storm-1789.
- Moonstone Sleet uses a combination of well-known and unique attack methodologies targeting financial and cyberespionage objectives.
- The group employs tactics like setting up fake companies, creating malicious games, and delivering custom ransomware.
- Notable TTPs include trojanized versions of legitimate tools and fake job opportunities to lure targets.
- Microsoft provides specific recommendations and detection details to defend against Moonstone Sleet attacks.
Membership Required
You must be a member to access this content.