ESET Research into new attacks by Lazarus – Week in security with Tony Anscombe

by admin 0 Comments

Cyber Security
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

The attack involved the first recorded abuse of a security vulnerability in a Dell driver that was patched in May 2021

This week, the ESET Research team has published the results of their analysis of recent attacks carried out by the Lazarus APT group. Using spear-phishing emails that contained malicious Amazon-themed documents, the group targeted an employee of an aerospace company in the Netherlands and a political journalist in Belgium. Notably, one of the tools used in the attack exploited the CVE‑2021‑21551 vulnerability in a Dell driver in what was the first recorded abuse of this security flaw.

Watch the video to learn more about the attack and about some of the precautions companies and employees can take against such well-resourced and organized groups. For more recommendations about defending against APT groups, head over to this video.

This article was originally published by Welivesecurity.com. Read the original article here.
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

Products You May Like

Articles You May Like

Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw
Android Flaw Affected Apps With 4 Billion Installs
Why space exploration is important for Earth and its future: Q&A with David Eicher
Ransomware Rising Despite Takedowns, Says Corvus Report
Millions of Malicious ‘Imageless’ Containers Planted on Docker Hub Over 5 Years

Leave a Reply

Your email address will not be published. Required fields are marked *