Tag: LNK file
-
North Korean Hackers Launch Widespread Cyberespionage Campaign
The North Korean threat group APT37 (also known as ScarCruft, InkySquid, Reaper, and Ricochet Chollima) has launched a sweeping espionage campaign under the codename Operation HanKook Phantom, targeting government and research organizations in South Korea and across the wider region. Researchers at Seqrite uncovered that the attackers distribute counterfeit documents disguised as bulletins from the…
-
Zip Smuggling: The Stealthy Way to Hide Data in Plain Sight
zip_smuggling This Python utility creates zip files that contain additional data embedded within the file structure. This extra data is not visible/does not display when the zip is examined or decompressed, but can be retrieved using powershell via a Windows shortcut file (LNK) within the zip file. This project leverages an older one of mine, lnk_generator,…