Attack linked to Lazarus Group uses malware-laced client as lure to gain access, researchers say
Hackers linked to North Korea are using a malicious version of a popular open-source application as a novel lure to hijack computers, researchers at cybersecurity firm Mandiant warned in a report published on Wednesday.
According to the researchers, North Korean hacking syndicate UNC4034, also known as Lazarus Group or APT38, injected malware into an application widely used to connect computers. The application, a client called PuTTY, includes a so-called backdoor that ultimately gives the attackers full control over the compromised computer.
“There is some evidence to suggest they could be targeting users in technical or