Lazarus Hacking Group Distributes Malware Via Windows IIS Servers
North Korea's Lazarus hacking group is hacking into Windows Internet Information Service (IIS) web servers to distribute malware. IIS is Microsoft's web server used for hosting websites and application services like Microsoft Exchange's Outlook on the Web. South Korean security analysts at ASEC confirmed Lazarus' focus on IIS servers for accessing corporate networks. Now, the cybersecurity company warns that the group is also exploiting poorly protected IIS services to distribute malware. This allows Lazarus to easily infect visitors of websites or users of services hosted on compromised IIS servers belonging to reputable organizations. Read more...