Researchers from ESET reported that North Korea’s Lazarus group executed attacks on three Europe-based defense companies in late March. The primary aim was likely to obtain sensitive information related to drone components and associated manufacturing processes. Lazarus, known for its espionage and sabotage activities, saw potential benefits in materials manufacturing knowledge and software used in unmanned aerial vehicles (UAVs).
The targeted entities supplied military equipment, including drones deployed in Ukraine, raising concerns about the implications of these attacks. ESET outlined that the operation utilized a social engineering tactic referred to as Operation DreamJob, leveraging fake job offers to gain access to the networks of these companies. A remote access trojan named ScoringMathTea facilitated the attackers’ control over the infected systems, employing a sophisticated strategy to avoid detection.
This incident highlights the ongoing threats faced by the drone sector, with ESET warning that similar attacks may target other organizations in this field. The insights gained from this attack could significantly enhance North Korea’s drone development capabilities.
👉 Pročitaj original: CyberScoop
