North Korea’s Lazarus Group has used a backdoored PDF reader app SwiftLoader to deploy KANDYKORN macOS malware in an attempt to avoid detection. The group has also used SwiftLoader stager variants pretending to be the EdoneViewer executable for KANDYKORN RAT retrieval. These actions illustrate the increasing integration of tools and techniques used by North Korean cyber threat operations.
Group-IB’s Threat Intelligence and Defence Centre Equip Undergraduates with Sophisticated Cybersecurity Technologies to Boost Threat Analysis and Enhance Cyber Resilience for Campus Start-ups
Hey there from the heart of the San Francisco Bay Area! It’s an absolute pleasure to have you back again for our chat on some