Information security
UK, Korea Warn of DPRK Supply Chain Attacks Involving Zero-Day Flaws
The UK National Cyber Security Centre and Korea's National Intelligence Service have issued a warning on DPRK state-sponsored hackers targeting government organizations.
The hackers employed zero-day and n-day vulnerabilities and exploited flaws in software supply chains to carry out attacks.
The hackers used a watering hole attack and exploited vulnerabilities in a network-linked system in order to gain remote control over targeted systems. [ more ]