Investigating this Lazarus Group campaign shows a stark contrast between their entry-level phishing strategies and advanced post-exploitation techniques. The accidental exposure of the Supabase database revealed not only their tracking methods but also significant lapses in operational security, such as the leakage of Chinese IP addresses.

Quote

Sources

Beyond the Pond Phish: Unraveling Lazarus Group’s Evolving Tactics