Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

North Korean Dream Job Attacks Hit Europe's UAV Sector

Lazarus hackers used fake job offers to deploy malware on three European UAV defense firms, exploiting social engineering despite prior exposure, ESET reports.

  • Lazarus hackers used Operation DreamJob to breach three European companies in the defense sector across Southeastern and Central Europe.
  • ESET analysis shows Lazarus focused on UAV technology, aligning with North Korea's drone push, targeting two firms: one makes drone components and the other designs UAV software.
  • Posing as recruiters, Operation DreamJob tricked victim employees into downloading malicious files, while infections began with trojanized open-source applications/plugins and used DLL sideloading and BinMergeLoader with Microsoft Graph API tokens.
  • The malware's capabilities include the ScoringMathTea RAT connecting to command-and-control infrastructure and manipulating files, targeting three European defence companies deployed in Ukraine.
  • ESET released indicators of compromise for DreamJob domains and tools and said the tactic remains effective despite repeated exposure, but did not provide details on success against the three targeted firms.
Insights by Ground AI

18 Articles

Tech RadarTech Radar
Reposted by
technewstube.comtechnewstube.com
Center

North Korean hackers target European defense firms with dream job scam

Lazarus is after drone know-how and has infiltrated three firms.

·United Kingdom
Read Full Article
The RegisterThe Register
Center

North Korean Dream Job attacks hit Europe's UAV sector

: Social engineering? Check. Trojanized open source? Check. Lazarus’ pet RAT? Also check

Read Full Article
BleepingComputerBleepingComputer
Center

North Korean Lazarus hackers targeted European defense companies

North Korean Lazarus hackers compromised three European companies in the defense sector through a coordinated Operation DreamJob campaign leveraging fake recruitment lures.

Read Full Article
World NEWS LiveWorld NEWS Live

North Korean hackers target European defense firms with dream job scam - WorldNL Magazine

(Image credit: Etereuti / Pixabay) Lazarus Group used fake job offers to infect Southeastern European drone firms with malwareAttackers stole proprietary UAV data and deployed a RAT for full system controlTargeted drones are used in Ukraine; North Korea is developing similar aircraftInfamous North Korean state-sponsored threat actors, Lazarus Group, have been targeting Southeastern European defense firms with their Operation DreamJob scams.Secu…

Read Full Article
Malware Analysis, News and IndicatorsMalware Analysis, News and Indicators

From Dream Job to Malware: DreamLoaders in Lazarus’ Recent Campaign

ESET published information about a Lazarus campaign targeting the UAV sector.At Lab52, we have analyzed similar artifacts — some of them overlapping (e.g., radcui.dll, HideFirstLetter.dll) — as part of an investigation i…

Read Full Article
unsafe.shunsafe.sh

North Korean Hacking Group Targeting European Drone Maker with Scoringmathtea Malware

Okay, now I need to help users summarize this article, keeping it to 100 words or less. First, I need to read the entire article and grasp the main points. The article describes how North Korea's Lazarus hacker group attacked three European drone and military equipment manufacturers. They used malware called ScoringMathTea, distributed through emails disguised as job postings. Their goal was to steal proprietary information and manufacturing tec…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

presseportal.de broke the news in on Thursday, October 23, 2025.
Sources are mostly out of (0)

Similar News Topics

Drones icon

Drones

Technology icon

Technology

North Korea icon

North Korea

News
For You
SearchBlindspotLocal