North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
18 September 2024
A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospace verticals and infect them with a previously undocumented backdoor dubbed MISTPEN.
The activity cluster is being tracked by Google-owned Mandiant under the moniker UNC2970, which it said overlaps with a threat group known as TEMP.Hermit, which is