North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor
Security Affairs
FEBRUARY 25, 2021
The attack chain starts with COVID19-themed spear-phishing messages that contain either a malicious Word attachment or a link to one hosted on company servers. . The experts discovered the custom backdoor while investigating an incident, it was used by attackers for lateral movements and data exfiltration.
Let's personalize your content