Free, Unbiased, and Open threat intelligence
Free, Unbiased, and Open threat intelligence
threat Profile
North Korea-aligned Lazarus Group conducted a cyber-espionage campaign targeting European defense contractors involved in UAV/drone manufacturing in Central and Southeastern Europe. The campaign, part of Operation DreamJob, aimed to steal proprietary information and manufacturing know-how related to unmanned aerial vehicles. Three organizations were targeted, some of which produce military equipment currently deployed in Ukraine. The attackers used social engineering with fake job offers via LinkedIn, deploying trojanized PDF readers to deliver the ScoringMathTea RAT. Initial access was achieved through trojanized open-source projects from GitHub. The campaign aligns with North Korea's efforts to scale up its domestic drone program and may be connected to North Korean military presence in Russia during the Ukraine conflict.
Threat Actors
Published
7 months ago
Views
25