NorthScanThreat Research
Investigating DPRK IT worker activity, social engineering campaigns, and insider threats through open-source intelligence.
DPRK IT Workers: Inside the Remote Infiltration Campaign
Advanced analysis reveals how North Korean threat actors are systematically infiltrating remote development teams through sophisticated identity manipulation and social engineering tactics targeting global enterprises.
Featured Threat Research
In-depth analysis of DPRK-linked cyber operations and emerging threat landscapes
APT28 Analysis
Advanced Persistent Threat
APT28 Operation Phantom Net: Advanced Steganography Campaign
Comprehensive analysis of APT28's latest campaign utilizing advanced steganography techniques and sophisticated persistence mechanisms to infiltrate high-value targets.
DPRK Campaign
GitHub Infiltration
WageMole GitHub Campaign: DPRK IT Worker Infiltration
Unmasking sophisticated GitHub activity patterns revealing how DPRK threat actors infiltrate developer communities and establish persistent access to critical infrastructure.
NorthScan Intelligence
Stay informed on threat intelligence
Launched 2 years ago