North Korean Lazarus Group targets nuclear workers with new malware

The North Korean Lazarus Group has targeted nuclear workers with new malware, continuing a campaign that began in 2020. This operation, known as Operation DreamJob, involves creating fake job offers to lure IT professionals. Recent attacks involved malicious remote access tools and new malware called CookieTime, which allows attackers to control compromised systems. Additional malware strains, including CookiePlus, were also deployed during these incidents. These attacks occurred in January 2024, highlighting the ongoing threat posed by Lazarus. The group has previously stolen significant amounts of cryptocurrency, indicating their focus on sensitive information and financial assets.