Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

Updated on September 2, 2025

The North Korea-linked threat actor known as the Lazarus Group has been attributed to a social engineering campaign that distributes three different pieces of cross-platform malware called PondRAT, ThemeForestRAT, and RemotePE.
The attack, observed by NCC Group’s Fox-IT in 2024, targeted an organization in the decentralized finance (DeFi) sector, ultimately leading to the compromise of an…

Read the rest of the story at Read More

Source: The Hacker News

October 3, 2024 Uncategorized

New Perfctl Malware Targets Linux Server...

December 4, 2024 Uncategorized

Hackers Use Corrupted ZIPs and Office Do...

May 13, 2025 Uncategorized

Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

Related posts

New Perfctl Malware Targets Linux Server...

Hackers Use Corrupted ZIPs and Office Do...

Moldovan Police Arrest Suspect in €4.5...

Leave a Comment Cancel reply

Recent News

5 Critical Questions For Adopting an AI Security Solution

⚡ Weekly Recap: Oracle 0-Day, BitLocker Bypass, VMScape, WhatsApp Worm & More

Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks

CometJacking: One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer

Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads

Researchers Warn of Self-Spreading WhatsApp Malware Named SORVEPOTEL