Microsoft Internet Information Services (IIS) servers, often used to host websites, are increasingly targeted for exploitation by threat actors such as Lazarus, a North Korean cyber espionage group. Attacks on IIS servers often involve DLL side-loading techniques, using vulnerabilities in software applications like INISAFE CrossWeb EX. To mitigate such threats, organisations are urged to maintain effective patch management, apply the principle of least privileges, analyse security logs and refine their vulnerability management through continuous web application security testing.
Lazarus Group’s Cryptocurrency Holdings Plummet to $47 Million Amid Heightened Cybersecurity Concerns
North Korea’s Lazarus Group’s cryptocurrency holdings have dwindled to $47m, with most of their digital wealth held in Bitcoin. Their stash has significantly decreased from