Source |
Security Affairs |
Identifiant |
4043080 |
Date de publication |
2022-01-27 20:30:53 (vue: 2022-01-27 21:05:08) |
Titre |
North Korea-linked Lazarus APT used Windows Update client and GitHub in recent attacks |
Texte |
North Korea-linked Lazarus APT group uses Windows Update client to deliver malware on Windows systems. North Korea-linked Lazarus APT started using Windows Update to execute the malicious payload and GitHub as a command and control server in recent attacks, Malwarebytes researchers reported. The activity of the Lazarus APT group surged in 2014 and 2015, its members used […]
|
Notes |
|
Envoyé |
Oui |
Condensat |
2014 2015 activity apt apt group attacks client command control deliver execute github group its korea lazarus linked malicious malware malwarebytes members north payload recent reported researchers server started surged systems the lazarus update used uses using windows |
Tags |
Malware
|
Stories |
APT 38
APT 28
|
Move |
|