Targeting of Central European aerospace and defense companies

Date of report

June 2020

Affiliations

Believed to be Lazarus Group

Hackers impersonated recruiters from Collins Aerospace and General Dynamics to lure in employees with enticing job offers, subsequently tricking them into opening malicious files sent via LinkedIn’s private messaging app.

Suspected victims

European aerospace and defense firms

Suspected state sponsor

Korea (Democratic People's Republic of)

Type of incident

Espionage

Target category

Private sector

Victim government reaction

Unknown

Operation In(ter)ception: Starting with a LinkedIn message, threat actors went after both secret information and money

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events