Open source software hijacked by North Korean hackers


Notorious North Korean threat actor Lazarus Group has been reported to be involved in a highly sophisticated, targeted malware attack that compromises popular open-source software and runs spear phishing campaigns.

As a result, it has managed to compromise “numerous” organizations in the media, defense and aerospace, as well as the IT services sector, a report (opens in new tab) of Microsoft has concluded.