"North Korean Hackers Exploit VPN Update Flaw to Install Malware"
According to South Korea's National Cyber Security Center (NCSC), Democratic People's Republic of Korea (DPRK) state-sponsored hackers have exploited vulnerabilities in a Virtual Private Network's (VPN) software update to install malware and infiltrate networks. The two threat groups said to be involved in this activity are "Kimsuky" and Andariel, both state-sponsored actors previously linked to the "Lazarus Group." This article continues to discuss North Korean hackers' exploitation of flaws in a VPN's software update to deploy malware and breach networks.
BleepingComputer reports "North Korean Hackers Exploit VPN Update Flaw to Install Malware"
Submitted by grigby1
Submitted by Gregory Rigby
on