Lazarus hacker Group Attack Defence Industries with custom-made Malware ThreatNeedle

From gbhackers.com

Lazarus hacker Group Attack Defence Industries with custom-made Malware ThreatNeedle

Lazarus has now added the defence industry to its growing list of victims. Lazarus is a North Korean hacking group that has been active since 2009. The group has primarily been linked with ransomware campaigns, cyberespionage, and attacks against the cryptocurrency market. 

Researchers at Kaspersky were made aware of the attack on the defence industry when they had responded to an incident, and had discovered a backdoor that was subsequently named ThreatNeedle. The main goal of the backdoor is to extract confidential information and send it to the attackers by moving laterally through the infected networks.

Read more…