News North Korean hackers exploit vulnerability in software development app: ReportAttackers could use exploit to compromise software while it’s still under development, expert says North Korean cybercriminals have exploited a vulnerability in an application for managing software development, in a possible attempt to compromise software while it’s still being developed and target new victims, according to security researchers. Microsoft said on its blog Wednesday that it observed two North Korean state-backed threat actors targeting multiple versions of JetBrains’ TeamCity server, a continuous integration and deployment application for software development and related operations, since early October. The cybercrime groups Lazarus and Andariel allegedly used the CVE-2023-42793 vulnerability that the U.S. government flagged earlier this month, which allows © Korea Risk Group. All rights reserved. |