Lazarus Group Uses Web Platform for Cyber Operations
/ 1 min read
💻🔗 Lazarus Group employs advanced web-based platform for cyber operations. The North Korean cyber threat actor, Lazarus Group, has been utilizing a sophisticated web-based administrative platform to manage its command-and-control (C2) infrastructure, as reported by SecurityScorecard’s STRIKE team. This system, built with React and Node.js, allows the group to oversee various cyber campaigns, including a recent supply chain attack dubbed Operation Phantom Circuit, which targeted the cryptocurrency sector and affected 233 victims globally. The operation involved embedding backdoors in legitimate software, deceiving users into executing compromised applications. Connections traced back to North Korea were facilitated through Astrill VPN and other proxies, highlighting the group’s advanced social engineering tactics and operational capabilities.
