The Lazarus Group is leveraging a centralized web-based administrative platform for its command-and-control operations. This system allows the attackers to manage campaigns more effectively, including organizing exfiltrated data and overseeing compromised hosts. The group was linked to Operation Phantom Circuit, which targeted the cryptocurrency sector with supply chain attacks using trojanized software. The operation had significant global impact, affecting 233 victims, mainly in Brazil, France, and India. The Lazarus Group also utilized social engineering tactics to attract targets, highlighting its sophistication in modern cyber warfare.
The Lazarus Group has centralized its command structure by utilizing a web-based administrative platform to streamline its command-and-control operations across multiple campaigns.
The hidden framework allows the attackers to manage exfiltrated data and track compromised hosts efficiently while varying their attack payloads to avoid detection.
Collection
[
|
...
]