Malware

Lazarus hackers breach CyberLink in supply chain attack

siteadmin November 22, 2023

A North Korean hacking group known as Diamond Sleet (also Lazarus) breached Taiwanese software firm CyberLink, infecting its installer with malware in a supply chain attack. Detected by Microsoft since Oct 20, 2023, the Trojanised installer targeted devices worldwide, leveraging a tampered CyberLink installer file. The malware (LambLoad) is aimed at systems devoid of FireEye, CrowdStrike, or Tanium security and connects to command-and-control servers for an encrypted payload.