North Korean hacker got hired by US security vendor loaded malware
KnowBe4 hired a North Korean hacker who attempted to introduce malware using a stolen identity. The incident raised concerns about hiring vulnerabilities and led to an FBI investigation, with no data compromised.
Read original article
KnowBe4, a US security vendor, inadvertently hired a North Korean hacker who attempted to introduce malware into the company's network. The individual used a valid but stolen US identity and an AI-enhanced photo to pass through the hiring process, which included background checks and video interviews. Upon receiving their workstation, the hacker began loading malware, which was detected by KnowBe4's Security Operations Center (SOC). The SOC flagged suspicious activities, leading to an investigation. The hacker claimed to be troubleshooting a router issue but became unresponsive when questioned further. KnowBe4's analysis suggested that the malware loading might have been intentional, raising suspicions of the individual being an "Insider Threat/Nation State Actor." The company has since shared its findings with cybersecurity experts and the FBI, which is now investigating the incident. KnowBe4 emphasized that no illegal access was gained, and no data was compromised. The incident serves as a cautionary tale about the vulnerabilities in hiring processes, particularly regarding identity verification. The hacker may have been operating remotely from North Korea or nearby, potentially using the job to fund illegal activities. KnowBe4 highlighted the importance of stringent security measures for new employees in sensitive areas to prevent similar occurrences in the future.
Related
TeamViewer confirms Russian spies hacked its corporate network
TeamViewer confirmed a breach by Russian state-sponsored hackers on June 26, 2024, contained within their Corporate IT environment. APT29, or Cozy Bear, was attributed to the attack. Organizations using TeamViewer should stay alert.
Microsoft tells yet more customers their emails have been stolen
Microsoft notifies customers of email theft by Russian criminals, expanding breach scope. Compromised accounts' correspondents informed. US auto dealers face disruptions from cyber incident linked to CDK software. Rabbit R1 AI devices' security flaw disclosed. EU sanctions Russians for cyber attacks.
Remote work powered fraud – How to prevent
Remote hiring offers a wider talent pool but also raises fraud risks. Recent cases reveal elaborate schemes involving stolen identities. To counter this, companies should enhance background checks, use multi-factor authentication, conduct security audits, and provide fraud awareness training.
North Korean hacker got hired by US security vendor loaded malware
KnowBe4 hired a North Korean hacker who attempted to introduce malware using a stolen identity. The incident highlighted the need for stringent hiring practices and robust security measures in organizations.
Hackers Exploited a PC Driving SIM to Pull Off Disney Data Breach
Hackers exploited a mod for BeamNG.drive to breach Disney's data, downloading over one terabyte of sensitive information. The incident underscores risks of third-party mods in gaming as malware vectors.
1 commentsRelated
TeamViewer confirms Russian spies hacked its corporate network
TeamViewer confirmed a breach by Russian state-sponsored hackers on June 26, 2024, contained within their Corporate IT environment. APT29, or Cozy Bear, was attributed to the attack. Organizations using TeamViewer should stay alert.
Microsoft tells yet more customers their emails have been stolen
Microsoft notifies customers of email theft by Russian criminals, expanding breach scope. Compromised accounts' correspondents informed. US auto dealers face disruptions from cyber incident linked to CDK software. Rabbit R1 AI devices' security flaw disclosed. EU sanctions Russians for cyber attacks.
Remote work powered fraud – How to prevent
Remote hiring offers a wider talent pool but also raises fraud risks. Recent cases reveal elaborate schemes involving stolen identities. To counter this, companies should enhance background checks, use multi-factor authentication, conduct security audits, and provide fraud awareness training.
North Korean hacker got hired by US security vendor loaded malware
KnowBe4 hired a North Korean hacker who attempted to introduce malware using a stolen identity. The incident highlighted the need for stringent hiring practices and robust security measures in organizations.
Hackers Exploited a PC Driving SIM to Pull Off Disney Data Breach
Hackers exploited a mod for BeamNG.drive to breach Disney's data, downloading over one terabyte of sensitive information. The incident underscores risks of third-party mods in gaming as malware vectors.