This article is from the source 'guardian' and was first published or seen on . It last changed over 40 days ago and won't be checked again for changes.
You can find the current article at its original source at https://www.theguardian.com/us-news/2017/nov/14/north-korea-malware-us-networks
The article has changed 6 times. There is an RSS feed of changes available.
Version 4 | Version 5 |
---|---|
North Korea-developed malware is still on networks, officials warn | North Korea-developed malware is still on networks, officials warn |
(11 days later) | |
US authorities have warned that malware developed in North Korea is still lurking in many computer networks, giving hackers backdoor access to government, financial, automotive and media organizations. | US authorities have warned that malware developed in North Korea is still lurking in many computer networks, giving hackers backdoor access to government, financial, automotive and media organizations. |
An alert issued by the Department of Homeland Security (DHS) warned of surreptitious activity by the so-called “Hidden Cobra” hacker group, also known by the name “Lazarus”. | An alert issued by the Department of Homeland Security (DHS) warned of surreptitious activity by the so-called “Hidden Cobra” hacker group, also known by the name “Lazarus”. |
US officials earlier this year blamed the group for a series of cyber-attacks dating back to 2009, saying it was linked to the Pyongyang government. | US officials earlier this year blamed the group for a series of cyber-attacks dating back to 2009, saying it was linked to the Pyongyang government. |
In Tuesday’s warning, the DHS Computer Emergency Response Team (Cert) said the hackers could still maintain a presence on victims’ networks with the aim of “further network exploitation”. | In Tuesday’s warning, the DHS Computer Emergency Response Team (Cert) said the hackers could still maintain a presence on victims’ networks with the aim of “further network exploitation”. |
The report said some networks could be infected with the Volgmer “backdoor Trojan” or a remote administration tool known as Fallchill, which can give hackers complete control of a system. | The report said some networks could be infected with the Volgmer “backdoor Trojan” or a remote administration tool known as Fallchill, which can give hackers complete control of a system. |
It said FBI investigators suspected the Fallchill tool had been used since 2016 and Volgmer since 2013. | It said FBI investigators suspected the Fallchill tool had been used since 2016 and Volgmer since 2013. |
Private security analysts refer to Hidden Cobra as the “Lazarus” group of hackers linked to North Korea and probably behind a series of multimillion-dollar cyberthefts from banks around the world. | Private security analysts refer to Hidden Cobra as the “Lazarus” group of hackers linked to North Korea and probably behind a series of multimillion-dollar cyberthefts from banks around the world. |
Some analysts say the Lazarus group may also have been behind the WannaCry ransomware outbreak earlier this year. | Some analysts say the Lazarus group may also have been behind the WannaCry ransomware outbreak earlier this year. |
Hackers in the Hidden Cobra or Lazarus group have been active since 2009 and “have leveraged their capabilities to target and compromise a range of victims”, according to a DHS report in June. | Hackers in the Hidden Cobra or Lazarus group have been active since 2009 and “have leveraged their capabilities to target and compromise a range of victims”, according to a DHS report in June. |
“Some intrusions have resulted in the exfiltration of data while others have been disruptive in nature.” | “Some intrusions have resulted in the exfiltration of data while others have been disruptive in nature.” |
DHS and FBI officials say the group “will continue to use cyber operations to advance their government’s military and strategic objectives”, according to the DHS report. | DHS and FBI officials say the group “will continue to use cyber operations to advance their government’s military and strategic objectives”, according to the DHS report. |
North Korea has denied orchestrating any cyber-attacks, but the latest report comes amid rising tensions with the US over the communist regime’s nuclear testing program. | North Korea has denied orchestrating any cyber-attacks, but the latest report comes amid rising tensions with the US over the communist regime’s nuclear testing program. |
Trump administration | Trump administration |
North Korea | North Korea |
Malware | Malware |
Data and computer security | Data and computer security |
Cyberwar | Cyberwar |
news | news |
Share on Facebook | Share on Facebook |
Share on Twitter | Share on Twitter |
Share via Email | Share via Email |
Share on LinkedIn | Share on LinkedIn |
Share on Pinterest | Share on Pinterest |
Share on Google+ | Share on Google+ |
Share on WhatsApp | Share on WhatsApp |
Share on Messenger | Share on Messenger |
Reuse this content | Reuse this content |