North Korean Hackers Use New Malware to Breach Air-Gapped Networks

North Korean hackers attributed to the APT37 group are using newly identified malware tools to exfiltrate data between internet-connected and air-gapped systems. The malware spreads via removable drives, enabling lateral movement into isolated networks, and is designed to conduct covert surveillance. No specific technical details, CVE IDs, or dates were disclosed in the reported findings. The primary impact involves unauthorized data transfer and persistent access to highly secured environments. The activity targets air-gapped networks, which are typically used in sensitive or critical infrastructure sectors.