Researchers warn that U.S. firms are being targeted with legitimate – but trojanized – documents that are often socially engineered to a tee.
A hacking group with ties to North Korea has been targeting U.S. entities with malicious documents as it works to hide its tracks better, according to research from Maryland-based cybersecurity firm Prevailion.
North Korea-linked hackers have expanded their campaign to spy on experts researching nuclear deterrence, North Korea’s nuclear submarine program and North Korean economic sanctions, according to research from Prevailion.
In what is assessed to be an expansion of a coordinated effort to target U.S.-based entities, an emerging and increasingly sophisticated campaign employing obscure file formats poses significant risk — and highlights the need for vigilance around third-party relations.