New Malware by Lazarus-Backed Andariel Group Exploits Log4j

Researchers have discovered a new malware named EarlyRat being used by the North Korea-backed Lazarus Group, deployed via Log4j and phishing attacks. Kaspersky found the malware while investigating the group’s activity from Mar-Jun 2022. It is run by the advanced persistent threat (APT) group Andariel, which is part of the Lazarus Group, and used mainly for command execution and system data collection. US authorities continue to prioritize measures to stop such groups.