Over the last 24 hours, Antuit Cyber Intelligence Research Team (“ACIRT”) have observed new footprints of threat actors propagating “sniffing” or behaviour capture malware in dark market places. Since last month ACIRT have been persistently following movements related to this campaign in various deep, dark web and hacker forums. Recent developments strongly indicate towards involvement of North Korean Threat group – LAZARUS.
Correlation and analysis of these hacker footprints with our Cyber Threat Intelligence Analytics Platform (CAP) indicate that this is a possible threat and we urge your organization to adopt the appropriate preventive measures to mitigate this threat.
Please download the report from.