Summary: North Korean hackers breached a Taiwanese software company and used its systems to deliver malware to the US, Canada, Japan, and Taiwan in a supply chain attack. The hackers modified a legitimate application installer, added malicious code, and signed it with a valid CyberLink certificate. The malware, known as LambLoad, checks for the presence of specific security software before executing malicious code. Microsoft has provided indicators of compromise (IoCs) to help detect the activity.

Hashtags: #SupplyChainAttack #Cybersecurity #NorthKoreanHackers #Malware #LambLoad #Taiwan #DiamondSleet #CyberLink #SecuritySoftware

https://www.securityweek.com/north-korean-software-supply-chain-attack-hits-north-america-asia/