Microsoft (MS) has discovered a North Korean hacker group called “Moonstone Sleet,” which distributed malware through fake online games, reported Radio Free Asia (RFA) on May 30.
According to RFA, MS announced via its Threat Intelligence blog on May 28 that they had “identified a new North Korean threat actor, now tracked as Moonstone Sleet.”
The hacker group focused its hacking activities on preparing for more extensive attacks, including fake job exams and the distribution of malicious games.
Moonstone Sleet disguised itself as a legitimate blockchain company or used fake companies, contacting educational institutions via email and presenting itself as seeking investors and developers.
It used methods such as deploying a malicious npm (server management program) package disguised as a technical skills assessment for fake companies and distributing a malicious online tank game called “DeTankWar.”
To gain the trust of users who quickly search for information, it also demonstrated meticulous movements, such as creating fake company websites and even establishing X (former Twitter) accounts.
MS has continuously warned of the dangers of North Korean cyber activities, including last year’s revelation that North Korean hacking groups attempted to steal personal information by creating fake websites to evaluate the skills of IT developers.
