Researchers at Cylance have discovered a new advanced threat, dubbed Baijiu, that uses heightened interest in North Korea and the GeoCities web service to prey on victims. The ultimate goal of this attack is to deploy a set of espionage tools through a downloader called Typhoon and set of backdoors called Lionrock. Researchers say it’s likely widespread, though the company did not discover specific geographies or organizations are at risk. Researchers found at least 10 other examples of attacks using Geocities as a launching pad for malware.”]