Suspected DPRK-linked threat actors have been observed compromising cryptocurrency firms through a coordinated campaign that blends web-app exploitation, cloud abuse, and secrets theft to position for large‑scale digital asset theft. The intrusions show a full kill chain from initial access via the React2Shell vulnerability (CVE‑2025‑55182) to deep AWS and Kubernetes reconnaissance and exfiltration of proprietary […]

The post DPRK Hackers Target Crypto Firms, Steal Keys and Cloud Assets in Coordinated Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.