Lazarus hackers breached dev repeatedly to deploy SIGNBT malware

The North Korean Lazarus hacking group has repeatedly compromised a software vendor, with the objective of stealing source code or attempting a supply chain attack. Cybersecurity provider Kaspersky discovered the attacks used diverse infection techniques and malware, including the SIGNBT malware and the LPEClient info-stealer. The firm highlighted the urgency for organizations to promptly patch software and prevent exploitation of vulnerabilities.