Trojanized CyberLink installer used in global Lazarus supply chain attack

26 November 2023

North Korea’s Lazarus Group, also known as Diamond Sleet, has been leveraging a trojanized CyberLink app installer to facilitate the distribution of LambLoad malware in a new supply chain attack, according to SiliconAngle. Organizations without CrowdStrike, FireEye, and Tanium security software within their corporate environments are the primary targets of LambLoad, which performs system date and time monitoring prior to the execution of malicious activities, according to a Microsoft Threat Intelligence report.

Source: SC Magazine

Date:

26 November 2023

Categorie(s):

NEWS

Tag(s):

CyberLink, IT, Lazarus, News

Understanding Scattered Spider, and how they perform cloud-centric identity attacks2 May 2024
Dropbox Sign customer data accessed in breach2 May 2024
Florida man gets 6 years behind bars for flogging fake Cisco kit to US military2 May 2024
Patch up – 4 critical bugs in ArubaOS lead to remote code execution2 May 2024
Menlo Security inks cybersecurity partnership with Google Cloud2 May 2024