The North Korea-linked threat actor known as Andariel has been observed using a new Golang-based backdoor called Dora RAT in its attacks targeting educational institutes, manufacturing firms, and construction businesses in South Korea.
« Keylogger, Infostealer, and proxy tools on top of the backdoor were utilized for the attacks, » the AhnLab Security Intelligence Center (ASEC) said in a report
