From the crew behind the Sony Pictures hack comes Operation Interception: An aerospace cyber-attack thriller
Threat intel researchers have uncovered a phishing and malware campaign that targeted "a large European aerospace company" and which was run by the same North Koreans behind the hack of Sony Pictures.
While there are quite a few European aerospace firms, Slovakian infosec biz ESET was more concerned with the phishing 'n' malware campaign it detected on behalf of its unnamed client. Branded "Operation Interception" by ESET, the researchers claimed the "highly targeted cyberattacks" were being spread by North Korean baddies Lazarus Group, who were behind the 2014 hack of Sony's American entertainment business.
The threat group's latest detected campaign involved targeting aerospace folk via LinkedIn, said the infoseccers. ESET researcher Jean-Ian Boutin explained: "In our case they were impersonating Collins Aerospace and General Dynamics (GD), two organisations in the same vertical as the targeted European organisations,". He said the Norks were targeting people who worked in "sales, marketing, tech, general admin" roles.