Lazarus hackers drop new RAT malware using 2-year-old Log4j bug

The North Korean hacking group Lazarus has been leveraging the “Log4Shell” vulnerability to deploy three new types of malware, according to Cisco Talos researchers. The group is targeting manufacturing, agricultural, and physical security companies worldwide in a campaign known as “Operation Blacksmith”. The new malware types – two remote access trojans and a malware downloader – are written in the D programming language, a rarity in cybercrime and likely an attempt to evade detection.