The National Intelligence Service (NIS) of the Republic of Korea (ROK) and the National Cyber Security Centre (NCSC) of the United Kingdom (UK) have identified Democratic People’s Republic of Korea (DPRK) state-linked cyber actors targeting software supply chain products, widely used by government organisations, financial institutions and defence industry companies globally.
The NIS and the NCSC are releasing this joint Cybersecurity Advisory (CSA) to help prevent compromise and raise public awareness.
It includes DPRK state-linked cyber actors’ tactics, techniques and procedures (TTPs) used in their global supply chain attacks,
as well as preventative measures to help avoid such attacks.
Please refer to the attached file for detailed information on the JCSA.
