LZarus Group is commonly believed to be run by the North Korean government, motivated primarily by financial gain as a method of circumventing long-standing sanctions against the regime. Defense against these types of attacks is largely the same whether they are state sponsored or not. Financial motivations of Lazarus Group will remain a risk to almost all organizations, but not to the degree you might think. Defenders should have robust log-monitoring capability, a patch management program, anti-phishing protection, and flags to distinguish legitimate communications from leadership from imposters.”]