• Disclaimer
  • Copyright
  • About Us
  • Privacy Policy for Netfest
  • Contact
  • Advertise
Tech News, Magazine & Review WordPress Theme 2017
  • Home
  • News
    BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

    BGMI 3.7 Update mod (hack) apk is now available for download!

    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    India's Reserve Bank of India (RBI) has launched a unique "bank.in" domain aimed at tackling digital banking fraud.

    India’s Reserve Bank of India (RBI) has launched a unique “bank.in” domain aimed at tackling digital banking fraud.

    There's no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar. (Image via Rockstar Games)

    There’s no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar.

    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

  • Review
    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

    MSI GE66 Raider Review

    MSI GE66 Raider Review

    iPhone SE (2020) review

    iPhone SE (2020) review

    Samsung Galaxy S20 Review (Indian Variant)

    Samsung Galaxy S20 Ultra review

    Samsung Galaxy S20 Review (Indian Variant)

    Samsung Galaxy S20 Review (Indian Variant)

    OnePlus 8 Pro review

    OnePlus 8 Pro review

  • Gaming
    BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

    BGMI 3.7 Update mod (hack) apk is now available for download!

    There's no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar. (Image via Rockstar Games)

    There’s no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar.

    BGMI 120 FPS APK AVAILABLE FOR DOWNLOAD

    BGMI 120 FPS APK AVAILABLE FOR DOWNLOAD

    BGMI Cover-Credits:  pxfuel. com

    zero recoil sensitivity bgmi code for android

    BGMI Mod Apk Review: Features and Benefits Explained

    Installing the BGMI Mod Apk 3.6.0 (ESP, Aimbot, Menu)

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

  • Gear
    • All
    • Camera
    • Laptop
    • Smartphone
    Samsung Galaxy S24 Plus Under ₹60,000: Check Offer Details

    Check out the latest price for the Samsung Galaxy S24 Plus at Flipkart’s Monumental Sale, which is 40% off.

    Amazon does not want you to read this Kindle jailbreak tutorial. netfest.in

    Amazon does not want you to read this Kindle jailbreak tutorial.

    oneplus 13 / oneplus 13R review

    Oneplus 13/13R Review-Are you considering upgrading? Here are several reasons why the OnePlus 13 and 13R are essential.

    Oneplus 13 / oneplus 13R review

    Phones Arriving in January 2025: From the OnePlus 13 to the Samsung Galaxy S25 Series

    BGMI Cover-Credits:  pxfuel. com

    zero recoil sensitivity bgmi code for android

    Realme X7 India Date Out , India Price 14.999? Confirms Company's CEO

    Realme X7 India Date Out , India Price 14.999? Confirms Company’s CEO

  • Computers
    Apple Intelligence is set to launch in India this April, starting with the English language.

    Apple Intelligence is set to launch in India this April, starting with the English language.

    Microsoft lists features removed in Windows 10 version 2004

    Microsoft lists features removed in Windows 10 version 2004

    Ubuntu 20.10 Release Date & Planned Features

    Ubuntu 20.10 Release Date & Planned Features

    MSI GE66 Raider Review

    MSI GE66 Raider Review

    MSI Creator 17 is the first Mini LED laptop in the world

    MSI Creator 17 is the first Mini LED laptop in the world

    Microsoft offers $100,000 to hack its custom Linux OS

    Microsoft offers $100,000 to hack its custom Linux OS

  • Applications
    Download TallyPrime 6.0 Beta and enjoy early access!

    Download TallyPrime 6.0 Beta and enjoy early access!

    "Step-by-Step Guide to Installing Kubernetes on Ubuntu 24.04/24.10"

    Step-by-Step Guide to Installing Kubernetes on Ubuntu 24.04

    Windows 11 KB5050021 23H2 has been released, bringing new features along with a direct download option for the .msu file.

    Windows 11 KB5050021 23H2 has been released, bringing new features along with a direct download option for the .msu file.

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

    Microsoft is teasing a new Windows 10 Start Menu

    Microsoft is teasing a new Windows 10 Start Menu

    Microsoft lists features removed in Windows 10 version 2004

    Microsoft lists features removed in Windows 10 version 2004

  • Security
    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    Broadcom has released patches for vulnerabilities in VMware Aria, as these exploits could potentially result in credential theft.

    Broadcom has released patches for vulnerabilities in VMware Aria, as these exploits could potentially result in credential theft.

    GitHub Desktop has a vulnerability that can lead to credential leaks through malicious remote URLs.

    GitHub Desktop has a vulnerability that can lead to credential leaks through malicious remote URLs.

    RANsacked: More than 100 security flaws detected in LTE and 5G network configurations.

    RANsacked: More than 100 security flaws detected in LTE and 5G network configurations.

    Uncover Concealed Browsing Dangers: Complimentary Risk Evaluation for GenAI, Identity, Web, and SaaS Vulnerabilities.

    Uncover Concealed Browsing Dangers: Complimentary Risk Evaluation for GenAI, Identity, Web, and SaaS Vulnerabilities.

No Result
View All Result
  • Home
  • News
    BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

    BGMI 3.7 Update mod (hack) apk is now available for download!

    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    India's Reserve Bank of India (RBI) has launched a unique "bank.in" domain aimed at tackling digital banking fraud.

    India’s Reserve Bank of India (RBI) has launched a unique “bank.in” domain aimed at tackling digital banking fraud.

    There's no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar. (Image via Rockstar Games)

    There’s no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar.

    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

  • Review
    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

    DeepSeek R1 has been jailbroken to create scripts for ransomware development.

    MSI GE66 Raider Review

    MSI GE66 Raider Review

    iPhone SE (2020) review

    iPhone SE (2020) review

    Samsung Galaxy S20 Review (Indian Variant)

    Samsung Galaxy S20 Ultra review

    Samsung Galaxy S20 Review (Indian Variant)

    Samsung Galaxy S20 Review (Indian Variant)

    OnePlus 8 Pro review

    OnePlus 8 Pro review

  • Gaming
    BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

    BGMI 3.7 Update mod (hack) apk is now available for download!

    There's no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar. (Image via Rockstar Games)

    There’s no need to be concerned about a delay for GTA 6 at this point, according to a source within Rockstar.

    BGMI 120 FPS APK AVAILABLE FOR DOWNLOAD

    BGMI 120 FPS APK AVAILABLE FOR DOWNLOAD

    BGMI Cover-Credits:  pxfuel. com

    zero recoil sensitivity bgmi code for android

    BGMI Mod Apk Review: Features and Benefits Explained

    Installing the BGMI Mod Apk 3.6.0 (ESP, Aimbot, Menu)

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

  • Gear
    • All
    • Camera
    • Laptop
    • Smartphone
    Samsung Galaxy S24 Plus Under ₹60,000: Check Offer Details

    Check out the latest price for the Samsung Galaxy S24 Plus at Flipkart’s Monumental Sale, which is 40% off.

    Amazon does not want you to read this Kindle jailbreak tutorial. netfest.in

    Amazon does not want you to read this Kindle jailbreak tutorial.

    oneplus 13 / oneplus 13R review

    Oneplus 13/13R Review-Are you considering upgrading? Here are several reasons why the OnePlus 13 and 13R are essential.

    Oneplus 13 / oneplus 13R review

    Phones Arriving in January 2025: From the OnePlus 13 to the Samsung Galaxy S25 Series

    BGMI Cover-Credits:  pxfuel. com

    zero recoil sensitivity bgmi code for android

    Realme X7 India Date Out , India Price 14.999? Confirms Company's CEO

    Realme X7 India Date Out , India Price 14.999? Confirms Company’s CEO

  • Computers
    Apple Intelligence is set to launch in India this April, starting with the English language.

    Apple Intelligence is set to launch in India this April, starting with the English language.

    Microsoft lists features removed in Windows 10 version 2004

    Microsoft lists features removed in Windows 10 version 2004

    Ubuntu 20.10 Release Date & Planned Features

    Ubuntu 20.10 Release Date & Planned Features

    MSI GE66 Raider Review

    MSI GE66 Raider Review

    MSI Creator 17 is the first Mini LED laptop in the world

    MSI Creator 17 is the first Mini LED laptop in the world

    Microsoft offers $100,000 to hack its custom Linux OS

    Microsoft offers $100,000 to hack its custom Linux OS

  • Applications
    Download TallyPrime 6.0 Beta and enjoy early access!

    Download TallyPrime 6.0 Beta and enjoy early access!

    "Step-by-Step Guide to Installing Kubernetes on Ubuntu 24.04/24.10"

    Step-by-Step Guide to Installing Kubernetes on Ubuntu 24.04

    Windows 11 KB5050021 23H2 has been released, bringing new features along with a direct download option for the .msu file.

    Windows 11 KB5050021 23H2 has been released, bringing new features along with a direct download option for the .msu file.

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

    For free, you may get the BGMI iOS App from the following link: Is BFMI iOS Download for free in 2 GB Ram? The complete list of iPhones

    Microsoft is teasing a new Windows 10 Start Menu

    Microsoft is teasing a new Windows 10 Start Menu

    Microsoft lists features removed in Windows 10 version 2004

    Microsoft lists features removed in Windows 10 version 2004

  • Security
    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    Malicious machine learning models on Hugging Face exploit a flawed Pickle format to avoid detection.

    Broadcom has released patches for vulnerabilities in VMware Aria, as these exploits could potentially result in credential theft.

    Broadcom has released patches for vulnerabilities in VMware Aria, as these exploits could potentially result in credential theft.

    GitHub Desktop has a vulnerability that can lead to credential leaks through malicious remote URLs.

    GitHub Desktop has a vulnerability that can lead to credential leaks through malicious remote URLs.

    RANsacked: More than 100 security flaws detected in LTE and 5G network configurations.

    RANsacked: More than 100 security flaws detected in LTE and 5G network configurations.

    Uncover Concealed Browsing Dangers: Complimentary Risk Evaluation for GenAI, Identity, Web, and SaaS Vulnerabilities.

    Uncover Concealed Browsing Dangers: Complimentary Risk Evaluation for GenAI, Identity, Web, and SaaS Vulnerabilities.

No Result
View All Result
NetFest
No Result
View All Result

In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

Nimesh Dama by Nimesh Dama
12/02/2025
150 2
Home News
Share on FacebookShare on Twitter

A North Korea-linked threat actor known as Kimsuky has been seen employing a new tactic that tricks targets into running PowerShell as an administrator and then instructs them to paste and execute malicious code provided by the attacker.

According to the Microsoft Threat Intelligence team, the threat actor poses as a South Korean government official, gradually building a relationship with the target before sending a spear-phishing email that includes a PDF attachment.

To view the supposed PDF document, victims are encouraged to click a URL that outlines steps to register their Windows system. This registration link prompts them to open PowerShell as an administrator and copy/paste the code snippet shown into the terminal for execution.

If the victim complies, the malicious code downloads and installs a browser-based remote desktop tool, along with a certificate file containing a hardcoded PIN from a remote server.

Microsoft explained that the code then sends a web request to a remote server to register the victim’s device using the downloaded certificate and PIN, enabling the threat actor to access the device and perform data exfiltration.

The tech giant noted that it has observed this tactic in limited attacks since January 2025, marking a shift from the threat actor’s typical methods. I

t’s important to mention that Kimsuky is not the only North Korean hacking group to use this compromise strategy. In December 2024, it was reported that threat actors associated with the Contagious Interview campaign are deceiving users into copying and executing a malicious command on their Apple macOS systems through the Terminal app, claiming it resolves an issue with accessing the camera and microphone via the web browser.

North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack
North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack

Recent months have seen a significant rise in attacks that utilize the ClickFix method, largely because these tactics depend on the targets unwittingly infecting their own devices, which helps them evade security measures.

An Arizona woman has pleaded guilty to operating a laptop farm for North Korean IT workers.

This development follows the U.S. Department of Justice (DoJ) announcing that a 48-year-old woman from Arizona admitted her involvement in a fraudulent scheme that enabled North Korean cybercriminals to secure remote positions at over 300 U.S. companies by impersonating American citizens and residents.

According to the department, this operation generated more than $17.1 million in illegal profits for Christina Marie Chapman and North Korea, violating international sanctions from October 2020 to October 2023.

The DoJ stated, “Chapman, an American citizen, collaborated with foreign IT workers from October 2020 to October 2023 to steal the identities of U.S. nationals. She used these identities to apply for remote IT jobs and, to further the scheme, submitted false documents to the Department of Homeland Security.”

“Chapman and her co-conspirators secured positions at numerous U.S. companies, including Fortune 500 firms, often through temporary staffing agencies or other contracting firms.”

The defendant, arrested in May 2024, is accused of operating a laptop farm by hosting several laptops at her home to create the illusion that North Korean workers were physically present in the U.S. In reality, these workers were located in China and Russia, connecting remotely to the companies’ internal systems.

According to the Department of Justice, “Due to the actions of Chapman and her co-conspirators, over 300 U.S. companies were affected, more than 70 identities of U.S. persons were compromised, false information was provided to DHS on over 100 occasions, and more than 70 U.S. individuals had fraudulent tax liabilities created in their names.”

The heightened scrutiny from law enforcement has intensified the IT worker scheme, with reports surfacing about data theft and extortion.

The U.S. Federal Bureau of Investigation (FBI) noted in an advisory last month, “After being detected on company networks, North Korean IT workers have extorted victims by holding stolen proprietary data and code hostage until the companies comply with ransom demands. In some cases, these workers have publicly released proprietary code belonging to victim companies.”

Tags: In their latest cyberattackNorth Korean hackers are taking advantage of a PowerShell exploit to hijack devices.
Nimesh Dama

Nimesh Dama

Founder and Editor-in-Chief of 'NetFest News,' Nimesh is a cybersecurity analyst, Gadgets review, Tech News, Information Security professional, developer, and a white hat hacker

Next Post
BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

Leave a ReplyCancel reply

Recommended

BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

15/02/2025
In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

12/02/2025

Trending

BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

15/02/2025
BGMI Mod Apk Review: Features and Benefits Explained

Installing the BGMI Mod Apk 3.6.0 (ESP, Aimbot, Menu)

29/01/2025
"Step-by-Step Guide to Installing Kubernetes on Ubuntu 24.04/24.10"

Step-by-Step Guide to Installing Kubernetes on Ubuntu 24.04

28/01/2025
Samsung Galaxy S20 Review (Indian Variant)

Samsung Galaxy S20 Ultra review

BGMI Cover-Credits:  pxfuel. com

zero recoil sensitivity bgmi code for android

31/12/2024
netfest.in logo

We bring you the best Premium Tech News,Review & Penetration Testing News, magazine, personal blog, etc. Check our landing page for details.

Categories

  • Apple
  • Applications
  • Camera
  • Computers
  • Course/Jobs
  • Gaming
  • Gear
  • Laptop
  • Microsoft
  • News
  • Review
  • Security
  • Smartphone
  • Uncategorized

Recent News

BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

15/02/2025
In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

12/02/2025
  • Trending
  • Comments
  • Latest
BGMI Mod Apk Review: Features and Benefits Explained

Installing the BGMI Mod Apk 3.6.0 (ESP, Aimbot, Menu)

29/01/2025
BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

15/02/2025
BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

0
In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

0
BGMI 3.7 Update mod (hack) apk is now available for download! Check out the Golden Moon theme, explore the new RONDO map, and get all the details you need to know.

BGMI 3.7 Update mod (hack) apk is now available for download!

15/02/2025
In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

In their latest cyberattack, North Korean hackers are taking advantage of a PowerShell exploit to hijack devices.

12/02/2025
  • Disclaimer
  • Copyright
  • About Us
  • Privacy Policy for Netfest
  • Contact
  • Advertise

© 2025 JNews - Premium WordPress news & magazine theme by Jegtheme.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Home
  • News
  • Review
  • Apple
  • Applications
  • Computers
  • Gaming
  • Gear
    • Laptop
    • Camera
    • Smartphone
  • Microsoft
  • Smartphone

© 2025 JNews - Premium WordPress news & magazine theme by Jegtheme.