lazarusholic

Everyday is lazarus.dayβ

CJOliveNetworks

#CJOliveNetworks

Summary

In late April 2025, a North Korean hacking group known as Kimsuky compromised CJ OliveNetworks' digital certificate, which is used to verify the authenticity of software. The stolen certificate was found embedded in malware, suggesting it was used to disguise malicious files as legitimate CJ software. Chinese cybersecurity firm RedDrip Team reported that Kimsuky attempted to use this compromised certificate to target the Korea Institute of Machinery and Materials, a national research institution. Upon discovering the breach, CJ OliveNetworks promptly revoked the affected certificate, which was originally issued for software development and distribution. The company manages IT infrastructure for major CJ affiliates and provides B2B solutions such as smart factories and logistics automation systems.

Reports