The Andariel hacker group has targeted South Korean corporations with malware, delivered via asset management programs, targeting servers and communication firms. The group has used multiple forms of attack including spear-phishing and supply chain attacks. The group has been known to previously associate with the Lazarus group and has used a variety of malware including TigerRAT, NukeSped variants, Black RAT, and Lilith RAT.
Data-loss prevention company Cyberhaven hit by breach, statement says
Hackers breached data-protection company Cyberhaven by compromising an employee’s account and potentially stealing sensitive user data. They circulated a hacked version of Cyberhaven’s Chrome browser
