The Lazarus group, linked to North Korea, has fragmented into specialized subgroups, complicating attribution efforts. These subunits, like Diamond Sleet and Citrine Sleet, share tactics but have distinct objectives, primarily targeting cryptocurrency and corporate sectors. The increasing complexity necessitates improved tracking methodologies, precise profiling, and continuous innovation in cybersecurity strategies to address evolving threats.
New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The
