ScarCruft hackers push BirdCall Android malware via game platform
Summary
The North Korean hacker group APT37, also known as ScarCruft, is distributing a new Android backdoor malware named BirdCall. This malware is delivered through a supply-chain attack targeting users of a video game platform.
IFF Assessment
FOE
This article details a new malware campaign and a sophisticated threat actor, representing an increased risk to defenders.
Defender Context
Defenders should be aware of supply-chain attacks, particularly those leveraging popular platforms like gaming. Monitoring for the BirdCall malware and educating users about the risks associated with downloading software from unofficial sources is crucial.