Lazarus hackers breach six companies in watering hole attacks

Lazarus hackers breach six companies in watering hole attacks

In a recent espionage campaign, the infamous North Korean threat group Lazarus targeted multiple organizations in the software, IT, finance, and telecommunications sectors in South Korea.

Lazarus APT Targets Organizations by Exploiting One-Day Vulnerabilities

A recent cyber espionage campaign by the notorious Lazarus Advanced Persistent Threat (APT) group, tracked as “Operation SyncHole,” has compromised at least six South Korean organizations across software, IT, financial, semiconductor, and telecommunications sectors since November 2024. According to detailed… Read more → The post Lazarus APT Targets Organizations by Exploiting One-Day Vulnerabilities appeared first on IT Security News.

Operation SyncHole: Lazarus APT goes back to the well

Lazarus组织通过“Operation SyncHole”活动利用 watering hole 战略和韩国软件漏洞攻击了至少六家韩国组织，包括软件、IT、金融、半导体制造和电信行业。该活动结合了多种恶意工具和漏洞利用，并已确认相关软件已更新至补丁版本以修复漏洞。

Lazarus APT updates its toolset in watering hole attacks

We have been tracking the latest attack campaign by the Lazarus group since last November, as it targeted organizations in South Korea with a sophisticated combination of a watering hole strategy and vulnerability exploitation within South Korean software. The campaign, dubbed “Operation SyncHole”, has impacted at least six organizations in South Korea’s software, IT, financial, semiconductor manufacturing, and telecommunications industries, and…