A report from Yonhap states that a digital signing certificate associated with CJ OliveNetworks was found in malware described by security sources as North Korea-linked. The certificate had reportedly been abused to make malicious files appear legitimate, including in activity that RedDrip Team said targeted the Korea Institute of Machinery and Materials. CJ OliveNetworks said the certificate was for software development and distribution, and that it was revoked after confirmation. The incident highlights the risk of stolen code-signing material being used to support spear-phishing or malware delivery operations.