Microsoft's Threat Intelligence team said on Wednesday North Korean hackers had compromised CyberLink to distribute a modified installer file from the company as part of a wide-reaching supply-chain attack.
The file is hosted on legitimate update infrastructure owned by CyberLink, according to Microsoft, and the attackers used a legitimate code signing certificate issued to CyberLink to sign the malicious executable, according to Microsoft.
And it focuses predominantly on espionage, financial gain, and corporate network destruction, according to Microsoft.
[
add
]
[
|
|
...
]