2022-04
An Oregon defense company was among the defense-sector targets cited in the U.S. indictment of a North Korean Andariel operator and co-conspirators tied to Maui ransomware-funded intrusion infrastructure. The broader campaign allegedly exploited unpatched…
🇺🇸 United States
#DataBreach
#Defense
2022-04
Robins Air Force Base was identified as one of the U.S. Air Force targets in an alleged Andariel-linked campaign where DPRK operators used infrastructure funded by laundered Maui ransomware payments for additional defense, technology, and government intru…
🇺🇸 United States
#DataBreach
#Defense
2022-04
Randolph Air Force Base was listed among U.S. Air Force and government targets in an alleged Andariel conspiracy tied to DPRK Reconnaissance General Bureau operators who financed further intrusions with laundered Maui ransomware proceeds. The broader acti…
🇺🇸 United States
#DataBreach
#Defense
2022-04
A Michigan defense company was included among U.S. defense, technology, and government targets allegedly compromised by Andariel-linked operators after ransom proceeds from Maui ransomware attacks were laundered and used to lease infrastructure for follow…
🇺🇸 United States
#DataBreach
#Defense
2022-03
In March 2022, Sky Mavis’ Ronin Bridge for Axie Infinity lost 173,600 ETH and 25.5 million USDC, about $624 million, after attackers used compromised validator access to forge withdrawals. Linked analysis says the attack abused Ronin’s validator-approval …
🇻🇳 Viet Nam
#Cryptocurrency
#FinancialGain
2022-03
DeFiance Capital founder Arthur Cheong was targeted in a spear-phishing and social-engineering attack that led to theft of cryptocurrency and NFTs from a sophisticated DeFi user. Linked reporting places the incident in the broader DPRK cryptocurrency-thre…
🇸🇬 Singapore
#Cryptocurrency
#FinancialGain
2022-03
Andariel allegedly targeted a California defense company in follow-on intrusions funded by ransom payments from Maui ransomware attacks against U.S. healthcare organizations. Prosecutors said the actors exploited unpatched known vulnerabilities, including…
🇺🇸 United States
#DataBreach
#Defense
2022-03
Andariel allegedly targeted a Colorado medical clinic as part of a North Korean Reconnaissance General Bureau-linked operation against U.S. healthcare organizations using Maui ransomware. The indictment described extortion of hospitals and health care pro…
🇺🇸 United States
#Healthcare
#FinancialGain
2022-03
Andariel allegedly targeted a Florida hospital in a broader North Korean campaign that used Maui ransomware to hack and extort U.S. hospitals and health care providers. U.S. prosecutors said ransom payments were laundered through China-based facilitators …
🇺🇸 United States
#Healthcare
#FinancialGain
2022-03
Andariel allegedly targeted a Connecticut healthcare company as part of a North Korean Reconnaissance General Bureau-linked conspiracy to hack and extort U.S. hospitals and health care providers using Maui ransomware. The charged activity included launder…
🇺🇸 United States
#Healthcare
#FinancialGain
2022-03
An Arkansas healthcare company was part of the alleged Andariel-linked Maui ransomware and extortion conspiracy charged by the U.S. Justice Department against North Korean operator Rim Jong Hyok. Prosecutors said the DPRK Reconnaissance General Bureau-lin…
🇺🇸 United States
#Healthcare
#FinancialGain
2022-02
Andariel allegedly included NASA-OIG among follow-on government targets in a broader North Korean operation funded by laundered ransom payments from Maui ransomware attacks against healthcare organizations. The indictment said the actors exploited unpatch…
🇺🇸 United States
#Government
#DataBreach
2022-01
Qubit Finance was exploited through a vulnerability in its QBridge deposit function that allowed the attacker to drain protocol assets, with linked analyses reporting losses around $77 million to $80 million. Subsequent reporting described the incident as…
🇬🇧 United Kingdom
#Cryptocurrency
#FinancialGain
2022-01
Andariel allegedly targeted a Chinese energy company in a wider North Korean Reconnaissance General Bureau-linked intrusion set that also involved healthcare ransomware, defense, technology, government, and manufacturing victims. U.S. prosecutors said the…
🇨🇳 China
#DataBreach
#Utility
2021-11
bZx suffered a phishing-driven compromise after a developer received a malicious Word document, leading to theft of the developer private key and unauthorized ownership changes on affected smart contracts. The attacker used the new contract owner to drain…
🇺🇸 United States
#Cryptocurrency
#FinancialGain