Gen Threat Labs reported that Lazarus exploited CVE-2024-38193, a Windows AFD.sys zero-day later patched by Microsoft, to reach sensitive system areas. The source says Gen researchers found the exploitation in early June and observed the Fudmodule malware being used to hide Lazarus activity from security software. The targeting described in the article includes cryptocurrency engineering and aerospace professionals, with potential follow-on access to employer networks and cryptocurrency theft. The report ties the disclosure to Microsoft's patch and emphasizes rapid updating for Windows systems exposed to this Lazarus tradecraft.