A sophisticated and likely government-backed malware campaign has targeted the public sector in South Korea. Attacks on these individuals could be an attempt to gain a foothold into assets that can be deemed extremely valuable. Cisco Talos discovered the campaign was active between November 2016 and January 2017, targeting a limited number of people. The malicious document in question, which is written in Korean, is a Hangul Word Processor (HWP), a popular alternative to Microsoft Office in South Korea.
View full story
ORIGINAL SOURCE: SC Magazine