https://www.bleepingcomputer.com/news/security/hackers-exploit-magicline4nx-zero-day-in-supply-chain-attack/

The National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) warn that the North Korean Lazarus hacking group breaches companies using a zero-day vulnerability in the MagicLine4NX software to conduct supply-chain attacks.

MagicLine4NX is a security authentication software developed by the South Korean company Dream Security, used for secure logins in organizations.