Lazarus Group attacked a pharmaceutical company and a government health ministry related to the COVID-19 response. The nation-state actor is looking to speed up vaccine development efforts in North Korea. Lazarus Group deployed the Bookcode malware in a likely supply-chain attack through a South Korean software company, Kaspersky researchers said. The malware was directly executed on the victim machine from a command line shell. The attackers used to gather and exfiltrate victim information through shell commands, they said.
Source: https://threatpost.com/lazarus-covid-19-vaccine-maker-espionage/162591/