A state-sponsored hacking group has stolen a code-signing certificate from a Korean cybersecurity firm, potentially allowing them to distribute malware disguised as legitimate software. The Korea Internet & Security Agency (KISA) is investigating and working to prevent secondary damage. This attack follows previous incidents involving North Korean hackers, highlighting the ongoing threat to software supply chains.