Microsoft claims CyberLink has been breached by North Korean hackers

North Korean hackers, known as Lazarus Group or Diamond Sleet, have reportedly targeted Taiwanese multimedia company CyberLink in a supply chain attack similar to the 2020 SolarWinds hack. Microsoft, who identified the attack, revealed that the hackers used a legitimate code signing certificate from CyberLink to implant malware in one of the company’s installers, leading to numerous infections globally. Over 100 endpoints were compromised in Japan, Taiwan, Canada and the United States.