Cybersecurity researchers from Lookout Threat Lab have identified a sophisticated Android surveillance tool, dubbed “KoSpy”, believed to be the work of North Korean hackers. Active since March 2022, KoSpy is associated with the North Korean threat group APT37 (ScarCruft), disguised as legitimate utility applications. Once installed, it can gather a vast range of sensitive user data, focusing on Korean and English-speaking targets. KoSpy symbolizes an advanced evolution in North Korean cyber espionage capabilities.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
