Dossier
BlueNoroff
Coverage of BlueNoroff in the Nexus archive.
- Microsoft links Mastra AI supply chain attack to North Korean hackers
Microsoft has attributed a recent Mastra AI supply chain attack, which compromised over 140 npm packages, to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff.
- BlueNoroff Uses Fake Zoom Calls to Turn Victims Into Attack Lures
The North Korean hacking group BlueNoroff is using stolen victim videos, AI-generated avatars, and fake Zoom calls to target cryptocurrency executives with malware attacks. These tactics are designed to scale phishing efforts and lure victims into malicious campaigns.