Providing Free and Editor Tested Software Downloads

MajorGeeks.com - Serious software for the not so serious geek.

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. GS Auto Clicker

2. Macrium Reflect FREE Edition

3. Smart Defrag

4. Visual C++ Redistributable Runtimes AIO Repack

5. Visual C++ Runtime Installer (All-In-One)

6. McAfee Removal Tool (MCPR)

9. Sergei Strelec's WinPE

10. K-Lite Mega Codec Pack

How to Disable 1-Click Ordering on Amazon (and Avoid Surprise Charges)

How to Fix Shallow Paint Layer Depth in Bambu Studio

Aviator Betting Game Secrets: Unlock 97% RTP & Triple Your Wins

Windows Recall: What It Is, Why Hackers Will Love It, and How to Stay Safe

Star Trek Fleet Command Promo Codes: Redeem Codes for Free Shards, Blueprints And Resources

How To Use VLC Media Player to Trim Video Clips

What Is the $WinREAgent Folder and Can I Delete It?

Swear Your Way to Better Search Results

How to Get a Dark Start Menu and Taskbar in Windows 10 & 11

Enable, Disable, Manage, Delete or Create a System Restore Point

North Korea's Lazarus Group Targets Defense Contractors

Posted by: Timothy Weaver on 08/14/2017 11:05 AM [ Comments ]

Lazarus, the North Korea-linked cyber espionage group, has been suspected of launching cyber-attacks against U.S. citizens linked to defense contractors.

Researchers have found that the group is sending phishing emails that are loaded with weaponized Microsoft Office documents that use macros to deliver a piece of malware.

To make the campaign appear legitimate, the emails are exact duplicates of job descriptions available on the legitimate company’s website.

“This reuse of macro source code, XOR keys used within the macro to decode implant payloads, and the functional overlap in the payloads the macros write to disk demonstrates the continued use of this tool set by this threat group. The use of an automated tool to build the weaponized documents would explain the common but not consistent reuse of metadata, payloads, and XOR keys within the documents,” researchers explained.

According to Palo Alto Networks, the tactics and tools are similar to other campaigns used by the group. Lazarus is also suspected of being responsible for campaigns against financial institutions including the attack against Bangladesh’s central bank and banks in Poland.

Source: Security Week

Comments

comments powered by Disqus

© 2000-2025 MajorGeeks.com

Powered by Contentteller® Business Edition