Microsoft Security Threat Intelligence are reporting that ZINC aka Lazarus from North Korea, have been found to be weaponising open-source software in order to compromise orgs in media, defense, aerospace and IT services. Targeted apps/ programs have been named with Sumatra PDF Reader included amounst the named discoveries of PuTTY, KiTTY, TightVNC and muPDF/ Subliminal Recording…
From the horses mouth – Dated 29th September 2022 * 12 min read
https://www.microsoft.com/security/blog/2022/09/29/zinc-weaponizing-open-source-software/
more info on the Register:
https://www.theregister.com/2022/09/30/microsoft_north_korea_zinc_threat/
Windows - commercial by definition and now function...
