North Korean government-backed threat actor targeted security researchers working on vulnerability research and development. Google’s Threat Analysis Group said the adversary created a research blog and multiple profiles on various social media platforms such as Twitter, LinkedIn, Telegram, Discord, and Keybase. The goal, it appears, is to steal exploits developed by the researchers for possibly undisclosed vulnerabilities, thereby allowing them to stage further attacks on vulnerable targets of their choice. Microsoft corroborated the findings, attributing the attacks to a threat actor it calls ZINC or Hidden Cobra.
Source: https://thehackernews.com/2021/01/n-korean-hackers-targeting-security.html