Security researchers have uncovered a major supply chain attack carried out by North Korea's Lazarus Group, targeting hundreds of victims worldwide. The group compromised legitimate software packages and open-source tools, planting backdoors that allowed them to steal sensitive data.
North Korea 's Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing as of earlier this month, according to security researchers.
The campaign unfolded in multiple waves, according to SecurityScorecard researchers, who spotted the supply chain attack and disclosed it in The modified repositories included Codementor, CoinProperty, Web3 E-Store, a Python-based password manager, and other cryptocurrency-related apps, authentication packages, and web3 technologies, Ryan Sherstobitoff, senior VP of research and threat intelligence at SecurityScorecard, told"These are examples of code repos they host on Gitlab for example which is a clone of legit software and they embed into Node.js obfuscated backdoor," he said.
This campaign — embedding malware into legitimate software — also reveals a shift in Lazarus Group's modus operandi, Sherstobitoff added., SecurityScorecard's incident response team uncovered the Lazarus Group command-and-control servers that were active since September 2024. Further analysis revealed that these servers were later used in the Phantom Circuit campaign to communicate with infected systems, deliver malware, and exfiltrate stolen data.
Lazarus Group North Korea Supply Chain Attack Phantom Circuit Cryptocurrency
United Kingdom Latest News, United Kingdom Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
North Korea rings in 2025 with bizarre slideshow of Kim Jong-unNew Zealand, Australia and North Korea are amongst the countries around the world to have welcomed in the New Year 2025.
Read more »
Kim Jong Un Visits Kalma Beach Resort: A Symbol of North Korea's Tourism AmbitionsNorth Korean leader Kim Jong Un inspected the newly built Kalma coastal tourist area in Wonsan, expressing confidence in its potential to revitalize the North Korean economy through tourism.
Read more »
North Korea's Beach Resort Dream: Years of Delays and Uncertain FutureKim Jong-un's ambitious plan to create a massive beach resort in North Korea has faced numerous setbacks and remains incomplete. The project, initially planned to open in 2019, has been plagued by delays and cost overruns. Despite the leader's determination, it's unclear if the resort will ever become a reality.
Read more »
Kim Jong-un Bans Hot Dogs and Imprisons Divorcing Couples in North KoreaNorth Korean dictator Kim Jong-un has implemented a ban on hot dogs, deeming them too Western. He has also issued a decree that divorcing couples face up to six months in labor camps for what is considered 'anti-socialist' behavior.
Read more »
Kim Jong-un's Nephew Emerges as Potential Heir to North Korea's ThroneKim Jong-un revealed two more family members, his niece and nephew, at Pyongyang's New Year's Eve bash, sparking speculation about the future leadership of North Korea. While his daughter, Kim Ju-ae, was previously seen as the likely successor, the appearance of a male heir, Kim Yo-jong's son, has shifted the focus. Experts believe the next leader must come from the bloodline of Kim Il-sung, the nation's founder.
Read more »
At Least 3,000 North Korean Troops Killed Or Wounded Fighting Putin's War, South Korea SaysKate is a political correspondent at HuffPost UK. Based in Westminster, she covers the day-to-day events occupying parliament while also specialising in the Ukraine war, international relations and unpicking key economic events. She occasionally pops up on the radio to discuss the major political events of the day.
Read more »