North Korean hackers attacked a German company that produces air defense systems.

Hackers from North Korea launched an attack on Diehl Defense, a company engaged in the production of Iris-T air defense systems. This was reported by the German publication Spiegel.

The attackers used fake job offers that supposedly came from American arms suppliers. Those who opened the malicious PDF file infected their computers with malware, which then allowed the hackers to take control of the computer

The hackers hid their attacking server under the name Uberlingen, which is the location of Diehl Defence. The server also created pages similar to German login pages, both from Telekom and the email provider GMX. The fraudsters possibly aimed to obtain login data for German user systems.

The hackers had previously studied the situation in Germany in detail before attacking the company.

Espionage attack on the German company Diehl Defense

Recently, Diehl Defense, a company that produces Iris-T air defense systems, was exposed to a hacker attack. North Korean hackers used fake job offers and infected computers with malware. This allowed them to access computers and illegally take control of them. The hackers used authentic login pages, which created suspicion and misled German users. The hackers thoroughly studied the situation in Germany prior to the attack.

Previously, Russian spies posted recordings of German Air Force officers online, which were made during an online meeting. The recordings discussed issues of delivery and operation of long-range Taurus cruise missiles to Ukraine. Additionally, officials stated that there are military personnel from Britain, France, and the USA in Ukraine, whose goal is to assist in the operation of Western weapon systems.

Ukrainian hackers respond to attacks

A few days ago, the Main Intelligence Directorate of the Ministry of Defense of Ukraine coordinated an attack on over 800 servers in Russia. As a result, all the documents and data stored on the infected servers were completely destroyed. These servers were associated with military, administrative, and financial institutions that supported Russia's aggression against Ukraine.

Also in July, Ukrainian hackers carried out a massive cyber attack on the Bank of Russia and other financial institutions in the Russian Federation. As a result, several resources of the central bank were disrupted, and banks such as Zenit, Gazprombank, and internet providers were also attacked.