From cybersecuritynews.com
![Hackers Weaponize PuTTY SSH](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjbPAz2LxyCeisJ-Za5Xjp83hVI93BJbsnl9nVgy1mRjU3lGUVePjaC6NfZXEVGEO80LMsxOq9YnVD7ofVB9LbVUPc8MQFdsZ0ugZBLJbn-eLLaJbvg0lRL2aQxaDp86oHeCmmY7dj4jH47fz4ymyImHmOunnyq_V4MjYS-etgLbP-0nRsPY3aVCAVd1Q/s16000/Hackers%20Weaponize%20PuTTY%20SSH%20Client%20to%20Deploy%20Backdoors%20&%20Establish%20Communication%20Over%20WhatsApp.png)
The adversaries from North Korea are deploying critical backdoors on the devices of targets by using trojanized versions of the PuTTY SSH client. Posing as a fake Amazon job application to put backdoors onto their devices.
It is an interesting element in this campaign that a trojanized version of the PuTTY and KiTTY SSH utilities has been used as a means of deploying a backdoor. While in this case, the PuTTY and KiTTY SSH utility is ‘AIRDRY.V2’.