North Korean hackers exploit vulnerability in software development app: Report



News North Korean hackers exploit vulnerability in software development app: Report Attackers could use exploit to compromise software while it’s still under development, expert says Shreyas Reddy October 20, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON An illustration of the software development process \| Image: NK Pro North Korean cybercriminals have exploited a vulnerability in an application for managing software development, in a possible attempt to compromise software while it’s still being developed and target new victims, according to security researchers. Microsoft said on its blog Wednesday that it observed two North Korean state-backed threat actors targeting multiple versions of JetBrains’ TeamCity server, a continuous integration and deployment application for software development and related operations, since early October. The cybercrime groups Lazarus and Andariel allegedly used the CVE-2023-42793 vulnerability that the U.S. government flagged earlier this month, which allows Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01How China could benefit from North Korea’s troop deployment to Ukraine 02New North Korean ICBM delivers big political message, and likely bigger payloads 03How North Korea-Russia ties will challenge next US president, no matter who wins 04What to make of the stunning collapse in value of North Korean won 05What to know about Kim Yong Bok, the man leading North Korean troops in Russia 06If Trump: How erratic leader’s reelection could scramble North Korea policy 07North Korea’s admission of drone incursion exposes glaring gaps in air defenses 08The war in Ukraine is transforming how Europe perceives North Korean threats

News

North Korean hackers exploit vulnerability in software development app: Report

Attackers could use exploit to compromise software while it’s still under development, expert says

Shreyas Reddy October 20, 2023

North Korean hackers exploit vulnerability in software development app: Report

An illustration of the software development process | Image: NK Pro

North Korean cybercriminals have exploited a vulnerability in an application for managing software development, in a possible attempt to compromise software while it’s still being developed and target new victims, according to security researchers.

Microsoft said on its blog Wednesday that it observed two North Korean state-backed threat actors targeting multiple versions of JetBrains’ TeamCity server, a continuous integration and deployment application for software development and related operations, since early October.

The cybercrime groups Lazarus and Andariel allegedly used the CVE-2023-42793 vulnerability that the U.S. government flagged earlier this month, which allows

01How China could benefit from North Korea’s troop deployment to Ukraine
02New North Korean ICBM delivers big political message, and likely bigger payloads
03How North Korea-Russia ties will challenge next US president, no matter who wins
04What to make of the stunning collapse in value of North Korean won
05What to know about Kim Yong Bok, the man leading North Korean troops in Russia
06If Trump: How erratic leader’s reelection could scramble North Korea policy
07North Korea’s admission of drone incursion exposes glaring gaps in air defenses
08The war in Ukraine is transforming how Europe perceives North Korean threats

North Korean hackers exploit vulnerability in software development app: Report

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy