A cyberattack targeting NPO Mashinostroyeniya, a significant Russian missile technical firm, has been attributed to two distinct North Korean nation-state entities.
SentinelOne, a cybersecurity company, claimed to have discovered “two instances of North Korea related compromise of sensitive internal IT infrastructure,” including the compromise of an email server and the installation of the OpenCarrot Windows backdoor.
ScarCruft has been blamed for the attack on the Linux email server. On the other side, OpenCarrot is a well-known implant that has already been linked to the Lazarus Group read more North Korean Hackers Targets Russian Missile Engineering Firm.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.