Phishing LNK files and GitHub C2 power new DPRK cyber attacks
DPRK-linked hackers use GitHub C2s, starting attacks via phishing LNK files that drop a PDF and PowerShell script in South Korea. North Korea-linked threat actors target South Korean organizations using GitHub as C2 servers. The attack chain starts with phish…
Phishing LNK files and GitHub C2 power new DPRK cyber attacks North Korea-linked threat actors target South Korean organizations using GitHub as C2 servers. The attack chain starts with phishing ema… [+4911 chars]