탈륨 조직, 사설 주식 투자 메신저 악용해 소프트웨어 공급망 공격 수행

ESRC reported that the North Korea-linked Thallium group modified a private stock-investment messenger installer to conduct a software supply-chain attack, expanding beyond its usual spear-phishing activity. The NSIS installer executed wmic.exe to retriev…