North Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware

SITREP: North Korea's APT37 hacking group has initiated a new social engineering campaign utilizing Facebook to distribute RokRAT malware. The group engaged potential targets by adding them as friends, leveraging trust to facilitate the malware delivery. TACTICAL ASSESSMENT: This development indicates a shift in tactics by APT37, highlighting their adaptability in using popular social media platforms for cyber operations. The use of social engineering suggests an increasing sophistication in their approach to infiltrating target networks. PROJECTED VECTORS: Future operations may see APT37 expanding their use of social media for similar campaigns, potentially targeting a wider range of platforms and user demographics.