"Windows Zero-Day Attack Linked to North Korea's Lazarus APT"

Researchers at Gen Threat Labs have linked the exploitation of one of the zero-days recently patched by Microsoft to North Korea's "Lazarus" Advanced Persistent Threat (APT) group. The vulnerability marked as "actively exploited" by Microsoft enables SYSTEM privileges on the latest Windows operating systems. Gen Threat Labs posted a note connecting the exploitation to Lazarus through the use of the "FudModule" rootkit, previously documented by Avast as part of the Lazarus APT toolkit. This article continues to discuss the Windows zero-day attack attributed to North Korea's Lazarus APT group.

SecurityWeek reports "Windows Zero-Day Attack Linked to North Korea's Lazarus APT"

Submitted by grigby1

Submitted by Gregory Rigby on