The infamous Lazarus Group is conducting a new malicious campaign, delivering malware via legitimate software, despite available patches for vulnerabilities. The cyber security firm Kaspersky’s Research and Analysis Team discovered that targets were infected through compromised, certified web communication software. The campaign demonstrates the group’s sophisticated evasion techniques, with significant parallels to the notorious 3CX supply chain attack. Kaspersky highlighted the seriousness of this evolving global threat and recommended measures to mitigate targeted attacks.
Amazon Takes Down BMI CalculationVsn App From Its Appstore After Spotting Android Malware In It
McAfee Labs discovered an Android spyware disguised as a BMI calculation app on the Amazon Appstore. The app harvested sensitive data from devices it infected
