News North Korean hackers hide malware in popular dev tools to steal from tech firmsLazarus Group’s reliance on global infrastructure suggests possible cooperation with Russian black hats, expert says North Korean cybercriminals leveraged widely used development tools to compromise over 1,500 systems in a new cyberespionage campaign targeting cryptocurrency and technology developers, according to a U.S. cybersecurity firm. One expert told NK Pro that the sophistication of the operation and its reliance on global infrastructure raises questions about whether the DPRK cybercriminals acted alone, suggesting that Russian black hats may have been involved. The “Phantom Circuit” campaign saw North Korea’s Lazarus Group modifying legitimate software packages to infiltrate targets’ systems using concealed backdoors, SecurityScorecard said in a report published on Wednesday. [p© Korea Risk Group. All rights reserved. |