Microsoft Discusses North Korean and Chinese Cyber Threats

Microsoft reveals insights on North Korean and Chinese cyber threats at CYBERWARCON. At CYBERWARCON, Microsoft Threat Intelligence analysts discussed the evolution of North Korean cyber capabilities, highlighting how the regime has stolen billions in cryptocurrency and targeted sensitive organizations. The presentation detailed the tactics of North Korean threat actors, including the use of zero-day exploits and the deployment of IT workers abroad to generate revenue while masquerading as legitimate professionals. Additionally, the talk covered Storm-2077, a Chinese state-sponsored actor known for targeting various sectors, including government and defense, using sophisticated phishing techniques to exfiltrate sensitive data. Microsoft emphasized the challenges in tracking these actors due to their evolving tactics and overlapping operations.