Publications

Reports
Blog
News

Filter

25 February 2021

Lazarus targets defense industry with ThreatNeedle

Seongsu Park,

Vyacheslav Kopeytsev

In mid-2020, we realized that Lazarus was launching attacks on the defense industry using the ThreatNeedle cluster, an advanced malware cluster of Manuscrypt (a.k.a. NukeSped). While investigating this activity, we were able to observe the complete life cycle of an attack, uncovering more technical details and links to the group’s other campaigns.

APT 5
Companies and organisations 9
Industrial control systems 3
Industries 16
Laws and regulation 3
Malware 18
Products and services 12
Technologies 16
Types of threats 9

Select an author

Select a date

Filter

Companies and organisations 4
Industrial control systems 2
Industries 1
Laws and regulation 2
Technologies 3
Types of threats 3

Select an author

Select a date

Filter

APT 1
Companies and organisations 49
Events and conferences 2
Industrial control systems 5
Industries 3
Laws and regulation 2
Malware 25
Products and services 58
Technologies 11
Types of threats 22

Select a date

Select a tag

APT 5
Companies and organisations 9
Industrial control systems 3
Industries 16
Laws and regulation 3
Malware 18
Products and services 12
Technologies 16
Types of threats 9

Select an author

Select a date

Filter

Select a tag

Companies and organisations 4
Industrial control systems 2
Industries 1
Laws and regulation 2
Technologies 3
Types of threats 3

Select an author

Select a date

Filter

Select a tag

APT 1
Companies and organisations 49
Events and conferences 2
Industrial control systems 5
Industries 3
Laws and regulation 2
Malware 25
Products and services 58
Technologies 11
Types of threats 22

Select a date

Filter