Source |
The Hacker News |
Identifiant |
4045173 |
Date de publication |
2022-01-28 01:24:28 (vue: 2022-01-28 10:07:41) |
Titre |
North Korean Hackers Using Windows Update Service to Infect PCs with Malware |
Texte |
The notorious Lazarus Group actor has been observed mounting a new campaign that makes use of the Windows Update service to execute its malicious payload, expanding the arsenal of living-off-the-land (LotL) techniques leveraged by the APT group to further its objectives.
The Lazarus Group, also known as APT38, Hidden Cobra, Whois Hacking Team, and Zinc, is the moniker assigned to the North |
Envoyé |
Oui |
Condensat |
also apt arsenal assigned as apt38 been campaign cobra execute expanding further group group actor hackers hacking has hidden infect its known korean land lazarus leveraged living lotl makes malicious malware moniker mounting new north notorious lazarus objectives observed off payload pcs service team techniques update use using whois windows zinc |
Tags |
Malware
Medical
|
Stories |
APT 38
APT 28
|
Notes |
|
Move |
|