Threat Advisories

Breaking Down Andariel APT’s Strike on South Korean Entities

May 23, 2024

Summary:

The Andariel APT group orchestrated a cyberattack targeting South Korean manufacturing, construction, and educational companies. They employed the Dora RAT, a backdoor like Nestdoor, and proxy tools to penetrate systems, extract data, and potentially control compromised machines.

Threat Level – Amber | Attack Report

×

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Attacks, Vulnerabilities and Actors 13 to 19 May 2024

QNAP Flaws Enable Remote Code Execution Under Certain Conditions