Threat actors have been targeting vulnerable Redis instances since February 2022 when the Redis Lua Sandbox Escape and Remote Code Execution Vulnerability, also known as "CVE 2022 0543," was discovered. The Mushtik Gang was one of the first cyber attack groups to exploit it.
Lazarus Group Recruitment: Threat Hunters vs Head Hunters
Lazarus Group Recruitment: Threat Hunters vs Head Hunters
Published on 27 April 2021
Contents
Introduction At the end of September 2020, Positive Technologies Expert Security Center (PT Expert Security Center, PT ESC) was involved in the investigation of an incident in one of the largest pharmaceutical companies. After starting to analyze the tactics, techniques, and procedures (TTPs) of the attackers, the investigation team found similarities with the Lazarus Group attacks previously described in detail by cybersecurity experts in the reports Operation: Dream Job and Operation (노스 스타) North Star A Job Offer That s Too Good to be True? .