Lazarus infects companies through news websites and financial softwareExperts have discovered sophisticated targeted attacks by the Lazarus hacker group targeting businesses in South Korea.
— The hackers used a combination of two main methods:
⏺First, they infected victims' systems through legitimate news websites (a watering hole tactic)
⏺Then they exploited a vulnerability in Innorix Agent, a popular South Korean file transfer software.
This campaign, dubbed "Operation SyncHole," reportedly targeted at least six South Korean companies.
