News New North Korean phishing campaign targets security researchers: ReportCybersecurity firm says target signals ‘shift in strategy’ and that use of custom tools highlights malware development A North Korean hacker group has been running an extensive spear-phishing campaign targeting Western media and technology companies and security researchers for almost a year, according to U.S. cybersecurity firm Mandiant. In a two-part blog post outlining the campaign’s tactics and operations, the company states that it has been tracking multiple intrusions since June 2022 by a suspected DPRK espionage group nicknamed UNC2970. The firm suspects “with high confidence” that this group is UNC577 or “TEMP.Hermit,” which Mandiant previously linked to operations of North Korea’s notorious Lazarus Group, according to the report. [p© Korea Risk Group. All rights reserved. |