North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
03 October 2024
Threat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShell as part of a campaign targeting Cambodia and likely other Southeast Asian countries.
The activity, dubbed SHROUDED#SLEEP by Securonix, is believed to be the handiwork of APT37, which is also known as InkySquid, Reaper, RedEyes, Ricochet Chollima,