The US Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have released a new report, covering technical details on the tools and infrastructure used by North Korean state-sponsored cyber actors. This is the latest in a series of Malware Analysis Reports (MAR) relating to activity by North Korea.
The Australian Cyber Security Centre is sharing this information to enable network defenders to identify and reduce exposure to the persistent threat of criminal and state-sponsored cyber actors.
Visit the US-CERT website to review the most recent and previous MARs related to this activity.
If you identify any of the techniques detailed in the MARs in your environment, you should report this to the Australian Cyber Security Centre (ACSC) via email or call the 24/7 Hotline for urgent assistance on 1300 CYBER1 (1300 292 371).