8
North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack (thehackernews.com)
submitted 4 weeks ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works
2 comments fedilink hide all child comments
top 2 comments
sorted by: hot top controversial new old
[-] IHawkMike@lemmy.world 8 points 4 weeks ago

"To read the purported PDF document, victims are persuaded to click a URL containing a list of steps to register their Windows system. The registration link urges them to launch PowerShell as an administrator and copy/paste the displayed code snippet into the terminal, and execute it."

This is not new, nor is it newsworthy.

[-] wizardbeard@lemmy.dbzer0.com 4 points 4 weeks ago

Wow, what a trick! Much exploit!

"deceived victims into running PowerShell as an administrator and pasting in malicious code"

Once again, people are the weakest link.

Vaguely interesting delivery method. Spearphishing emails with an attached PDF with the instructions and the code to copy paste in it. Claims that it's the way to "register windows". Maybe putting it in a PDF bypasses email filtering?

this post was submitted on 12 Feb 2025
8 points (83.3% liked)

Cybersecurity

6641 readers
96 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago
MODERATORS
kid@sh.itjust.works
Lanky_Pomegranate530@midwest.social