Infosec biz F-Secure has uncovered a North Korean phishing campaign that targeted a sysadmin with a fake Linkedin job advert using a General Data Protection Regulation (GDPR) themed lure.
The sysadmin worked for a cryptocurrency business, said the threat intel firm, which made him a ripe target for the money-hungry state hackers Lazarus Group, aka APT38, supposedly backed by North Korea.
"Our research, which included insights from our incident response, managed detection and response, and tactical defence units, found that this attack bears a number of similarities with known Lazarus Group activity, so we're confident they were behind the incident," said F-Secure's director of detection and response, Matt Lawrence.
North Korean attackers targeted "organizations in the cryptocurrency vertical" based in Britain, the US, the Netherlands, Germany, Singapore, Japan, and at least eight other countries, said F-Secure.
The initial lure was a ..
Support the originator by clicking the read the rest link below.
