Windows Kugadziridza kunoshandiswa neNorth Korea hackers kunzvenga chengetedzo software

Windows Kwidziridzo uye GitHub zvakashandiswa mumushandirapamwe neboka rine mukurumbira wecybercrime.

Zvaunoda kuziva

  • Mushandirapamwe mutsva wakaitwa neNorth Korean advanced inoshingirira boka Razaro ichangobva kuwanikwa.
  • Mushandirapamwe uyu wakashandisa magwaro akashata achinyepedzera kunge ari pabasa raLockheed Martin sechikamu chekurwiswa nepfumo.
  • Boka raRazaro rakatorawo mukana Windows Gadziridza nzira dzekunzvenga chengetedzo yekuona nzira.

Malwarebytes nguva pfupi yadarika vakawana mushandirapamwe wakaitwa neAdvanced persist threat group (APT) inozivikanwa saRazaro. Mushandirapamwe uyu wakashandisa kurwiswa nepfumo kubira kwaisanganisira magwaro akashata akavanzwa seruzivo nezvemikana yebasa naLockheed Martin. Sechikamu chemaitiro ayo ekurwisa, boka raRazaro rinoshandisa Windows Gadziridza uye GitHub yekupfuura kuchengetedza software.

Malwarebytes anonyatso kuputsa kurwiswa mune tekinoroji mazwi. Chimwe chikamu chemushandirapamwe chinoshandisa Windows Gadziridza nzira dzekunzvenga chengetedzo yekuona nzira. Malwarebytes anocherekedza kuti uku "kuchenjera" kushandiswa kwe Windows Update.

"Iyi inzira inonakidza inoshandiswa naRazaro kumhanyisa DLL yakashata vachishandisa iyo Windows Gadziridza Mutengi kuti apfuure nzira dzekuona dzekuchengetedza, "akadaro Malwarebytes. "Nenzira iyi, mutambi wekutyisidzira anogona kuita kodhi yake yakaipa kuburikidza neMicrosoft Windows Gadziridza mutengi…”

Boka raRazaro rakashandisawo GitHub mukurwisa kwayo. Kushandisa GitHub kunoita kuti zviome kune zvigadzirwa zvekuchengetedza kutaura mutsauko pakati pezvakaipa uye zviri pamutemo zvemukati. Aka ndekekutanga kuti Malwarebytes aone boka richishandisa GitHub nenzira iyi.

"Kashoma tinoona malware ichishandisa GitHub seC2 uye aka ndekekutanga kuona Razaro achiishandisa," akatsanangura Malwarebytes. "Kushandisa GitHub seC2 kune zvipingamupinyi zvayo asi isarudzo yakangwara yekurwiswa kwakanangwa uye kwenguva pfupi sezvo zvichiita kuti zviome kuti zvigadzirwa zvekuchengetedza zvisiyanise pakati pehukama huri pamutemo uye hune hutsinye."

Boka raRazaro rakamboshandiswa spear phishing tactics kuti uwane COVID-19 research. Razaro aive akabatanawo nekuzivikanwa kurwiswa kwaSony uye WannaCry rudzikunuro kurwisa.

Razaro ainziwo aive nechekuita kuba kwe$400 miriyoni inokosha cryptocurrency muna 2021.

Article Yepakutanga