Hackers connected to North Korea targeted various crypto platforms, utilizing exploited React2Shell and AWS credentials to gain unauthorized access. They exfiltrated crucial resources, including Docker images and source code.
The cyber attack’s infrastructure was based in South Korea, revealing a moderate attribution level, although the origin of the compromised AWS credentials remains unclear.
Leave a Reply