KnowBe4, a leading cybersecurity company, recently discovered a security breach involving a North Korean state actor posing as a Principal Software Engineer. The company thwarted the attempt to install information-stealing malware, highlighting the ongoing threat from North Korean actors. The infiltrator used stolen identity information and AI tools to pass background checks and interviews. Suspicion arose when the company’s EDR product flagged attempted malware installation from the new hire’s Mac workstation. The infostealer targeted web browser data, indicating an attempt to extract sensitive information. KnowBe4 recommends maintaining a sandbox for new hires, avoiding the remote use of their devices, and verifying shipping addresses to mitigate such risks. This incident underscores the need for vigilance in the face of persistent security threats.
Original story: https://www.bleepingcomputer.com/news/security/knowbe4-mistakenly-hires-north-korean-hacker-faces-infostealer-attack/
The 128 series brings you byte-sized news for busy professionals. The full story can be found here: http://cmd.news/article/industry-news/knowbe4-mistakenly-hires-dprk-hacker/
