Active North Korean campaign targeting security researchers

The report details a GitHub-published Windows utility intended to fetch debugging symbols for reverse engineers that contains hidden functionality to download and execute arbitrary code from attacker-controlled domains; the tool was published on September 30, 2022 and has been updated since. The activity is linked to targeting researchers with 0-day exploits, and the advisory recommends treating systems that ran the tool as compromised and performing OS reinstalls.