North Korean threat actor UNC1069 conducted a sophisticated attack against a FinTech entity using AI-generated deepfake video, compromised Telegram accounts, and fake Zoom meetings to deploy seven malware families. The attack chain included WAVESHAPER backdoor, HYPERCALL downloader, HIDDENCALL backdoor, and new tools
Sort: