Bleeping Computer
North Korean hacking group Thallium aka APT37 has targeted users of a private stock investment messenger service in a software supply chain attack, according to a report published this week.
Up until now, the group mainly relied on phishing attacks, such as via Microsoft Office documents, to target its victims.
Thallium is now leveraging multiple ways, such as shipping tainted Windows installers and macro-laden Office documents to prey on investors.