The JJ Story Is a Little Similar to the Malicious YouTube Stories

Mandiant reports, it spotted the North Korea link threat actor UNC 2970 operating a phishing campaign that's been in place since June 2022. The campaign uses three new malware families specifically focusing on security researchers. These lures impersonated legitimate recruiters and eventually shifted conversations from places like LinkedIn to WhatsApp,. where it would deliver a malicious word door or document to install a back door.