Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans

The notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that involves the opportunistic exploitation of security flaws in Log4j to deploy previously undocumented remote access trojans (RATs) on compromised hosts.
Cisco Talos is tracking the activity under the name Operation Blacksmith, noting the use of three DLang-based

access actor campaign cisco cisco talos compromised deploy exploitation exploits flaws global korea lazarus lazarus group log4j name north north korea rats remote access remote access trojans security security flaws talos threat threat actor tracking trojans under undocumented