2025-04-01
ENKI
국내 보안 기업 코드 서명 인증서 유출: 북한 APT 그룹 연관성 조사
#Somansa
Somansa
#Somansa
- Reported: 2025-02
- Locations: Korea, Republic of
- Motivations: #SupplyChain
- Sectors: #Technology
Summary
A state-sponsored hacking group has stolen a code-signing certificate from a Korean cybersecurity firm, potentially allowing them to distribute malware disguised as legitimate software. The Korea Internet & Security Agency (KISA) is investigating and working to prevent secondary damage. This attack follows previous incidents involving North Korean hackers, highlighting the ongoing threat to software supply chains.