UPDATES
3
4
4
3
threat
UPDATES
3
SINGAPORE
iProov , a leading provider of science-based solutions for biometric identity verification , has uncovered a significant
Dark Web operation focused entirely on KYC bypass methods .
4
KOREA
The SecurityScorecard STRIKE team has uncovered Operation 99 , a cyberattack by the Lazarus Group ,
North Korea ’ s state-sponsored hacking unit .
This discovery , which represents a sophisticated approach to compromising identity verification systems through the systematic collection of genuine identity documents and images , demonstrates the evolving nature of identity fraud threats .
This discovery was made by iProov ’ s Biometric Threat Intelligence service . The service includes extensive threat-hunting operations and red team testing within the iProov Security Operations Center ( iSOC ) to provide organisations with detailed analysis of emerging identity fraud tools , techniques and essential defensive strategies .
This campaign targets software developers looking for freelance Web3 and cryptocurrency work .
The campaign began with fake recruiters , posing on platforms like LinkedIn , luring developers with project tests and code reviews . Once a victim takes the bait , they ’ re directed to clone a malicious GitLab repository – seemingly harmless but packed with disaster .
The cloned code connects to Command-and-Control ( C2 ) servers , embedding malware into the victim ’ s environment .
4
3
WWW . INTELLIGENTCISO . COM 25