"North Korean Software Supply Chain Attack Hits North America, Asia"

A recent North Korean attack on a Taiwanese company spreads malware to the United States, Canada, Japan and Taiwan. Microsoft discovered that a hacker gang known as Diamond Sleet gained access to a Taiwan software company CyberLink Corporation producers of audio, video, and photo editing software. They added malware to the application installer and managed to get their modified version signed with a CyberLink certificate and hosted on a valid update system. The code checks to see if security software from CrowdStrike, FireEye, or Tanium is present before running the malicious code. In the past this hacker group has stolen personal data and compromised developmental software environments.

Security Week reports "North Korean Software Supply Chain Attack Hits North America, Asia"

Submitted by ebuckh

Submitted by Gregory Rigby on