A new finding published by Microsoft Threat Intelligence Center (MSTIC) has revealed that threat actors associated with North Korea have been weaponizing legitimate open–source software to target employees in organizations across multiple industries.