A stream chart of a cyberattack believed to have been carried out by Pyongyang-backed hacking group APT37 / Captured from a report by Genians Safety Middle
A North Korea-linked cyber hacking group seems to have launched a brand new cyberattack marketing campaign, code-named “Artemis,” that embeds malicious code inside laptop information, a report confirmed Monday.
The Genians Safety Middle (GSC), a South Korean cybersecurity institute, stated in a report that it detected the operation believed to have been carried out by APT37, a Pyongyang-backed cyber hacking group.
Based on the report, the menace actors embedded malicious object linking and embedding (OLE) code inside Hangul Phrase Processor (HWP) paperwork. An assault chain is triggered when a person permits the opening of the doc’s content material and clicks a hyperlink within the file.
HWP is a doc file format broadly used as an ordinary in South Korea.
The findings observe an October report by 38 North, a U.S.-based web site monitoring North Korea, which stated North Korean cyber operators have repeatedly exploited the HWP format to infiltrate authorities, army and key industrial networks in South Korea.
“This assault demonstrates APT37’s ongoing sample of extremely developed reconnaissance and infiltration actions,” the GSC report stated. “It additionally signifies that the group continues to refine its capabilities by leveraging superior technical strategies.”
