theAIcatchup

Diagram of DPRK phishing LNK attack chain using GitHub for command and control against South Korean organizations

North Korean Hackers Turn GitHub into C2 Battlefield with Sneaky LNK Phishing

Forget the usual malware droppers. DPRK hackers are phishing South Korean orgs with LNK files that masquerade as PDFs, then pivot to GitHub for C2. It's a slick architectural shift that's hard to block.

4 min read 1 day, 18 hours ago

#Phishing LNK files

North Korean Hackers Turn GitHub into C2 Battlefield with Sneaky LNK Phishing

Stay in the loop