The Hacker News
@thehackernews
�� DPRK-linked attackers used GitHub as C2 in phishing-led attacks on South Korean orgs.
LNK files trigger hidden PowerShell, set persistence, and exfiltrate system data to attacker repos while pulling new payloads.
�� Read → https://thehackernews.com/2026/04/dprk-linked-hackers-use-github-as-c2-in.html
LNK files trigger hidden PowerShell, set persistence, and exfiltrate system data to attacker repos while pulling new payloads.
�� Read → https://thehackernews.com/2026/04/dprk-linked-hackers-use-github-as-c2-in.html
🔥 9
👍 1
🤔 1
16 6.5K
Обсуждение 0
Обсуждение не доступно в веб-версии. Чтобы написать комментарий, перейдите в приложение Telegram.
Обсудить в Telegram