North Korea hackers poison popular application to compromise over 100 devices



News North Korea hackers poison popular application to compromise over 100 devices Supply chain attack used validated software in sign of Lazarus Group’s increasing ‘sophistication,’ expert says Shreyas Reddy November 24, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON An illustration of a grid of compromised computers \| Image: NK Pro North Korean cybercriminals compromised over 100 devices worldwide by deploying a malicious version of a Taiwanese application, according to security researchers. Microsoft Threat Intelligence reported Wednesday that Lazarus Group used a variant of an application installer developed by CyberLink Corp. for the supply chain attack. CyberLink’s software is widely used for functions such as video playback and editing, business communications and facial recognition, and Microsoft said this campaign affected devices in numerous countries including Japan, Taiwan, Canada and the U.S. Researchers attributed the campaign with “high confidence” to Lazarus, which Microsoft tracks Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push 02How long-range strikes on Russia could impact North Korean troop deployments 03How North Korean hackers and IT workers collude to cause chaos 04What pro-Trump think tanks reveal about his likely North Korea policy priorities 05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 06All the question marks hanging over Trump’s approach to North Korea in term two 07Time almost up for North Korea’s plan to launch 3 military satellites in 2024 08Trump return rekindles prospects of North Korea talks, but Russia stands in way

News

North Korea hackers poison popular application to compromise over 100 devices

Supply chain attack used validated software in sign of Lazarus Group’s increasing ‘sophistication,’ expert says

Shreyas Reddy November 24, 2023

North Korea hackers poison popular application to compromise over 100 devices

An illustration of a grid of compromised computers | Image: NK Pro

North Korean cybercriminals compromised over 100 devices worldwide by deploying a malicious version of a Taiwanese application, according to security researchers.

Microsoft Threat Intelligence reported Wednesday that Lazarus Group used a variant of an application installer developed by CyberLink Corp. for the supply chain attack.

CyberLink’s software is widely used for functions such as video playback and editing, business communications and facial recognition, and Microsoft said this campaign affected devices in numerous countries including Japan, Taiwan, Canada and the U.S.

Researchers attributed the campaign with “high confidence” to Lazarus, which Microsoft tracks

01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push
02How long-range strikes on Russia could impact North Korean troop deployments
03How North Korean hackers and IT workers collude to cause chaos
04What pro-Trump think tanks reveal about his likely North Korea policy priorities
05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump.
06All the question marks hanging over Trump’s approach to North Korea in term two
07Time almost up for North Korea’s plan to launch 3 military satellites in 2024
08Trump return rekindles prospects of North Korea talks, but Russia stands in way

North Korea hackers poison popular application to compromise over 100 devices

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy