1/22/2024 0 Comments Lazarus group profile![]() As part of the infection chain, Lazarus used a downloader named “Racket” which they signed using a stolen certificate. In the second case, the target was a company developing asset monitoring solutions in Latvia, an atypical victim for Lazarus. However, this time Kaspersky researchers tracked Lazarus using MATA for the purpose of cyber espionage. Historically, Lazarus has used this framework to attack various industries to steal customer databases and spread ransomware. In June this year, the security giant observed the Lazarus group attacking the defence industry using the multi-platform malware framework (MATA), which has the ability to target three operating systems – Windows, Linux and macOS. Having a variety of advanced tools at its disposal, the group appears to have chosen to apply them to new goals, Kaspersky says. It has been behind some of the largest cyber espionage and ransomware campaigns to date. Lazarus is one of the world’s most active and notorious threat actors, which has been active since at least 2009. This includes indicators of compromise, data and rules to assist in forensics and malware hunting. This was revealed in Kaspersky’s latest quarterly threat intelligence report, which summarises the findings of the security company's subscriber-only threat intelligence reports. "We also notified people who may have been in contact with these accounts and gave suggestions to enhance their account security, as we have done in the past about other threat groups," Facebook said.Lazarus, a highly prolific North Korean state-sponsored advanced threat group, has been developing supply chain attack capabilities to commit cyber-espionage, and target the defence industry. Smith added that Microsoft would continue to work with Interpol, Europol, the FBI and other law enforcement agencies to combat cybercrime.įacebook said it is working to raise awareness of the issue among its users and will continue to collaborate with other companies to counteract the threat. Read more: China accused of using LinkedIn to spy on West "As we look to 2018, it's essential that we act with shared responsibility to strengthen further the partnerships with the security community and governments to combat cyberattacks against civilians." "If the rising tide of nation-state attacks on civilians is to be stopped, governments must be prepared to call out the countries that launch them," Brad Smith, Microsoft's president and chief legal officer, said in a statement. ![]() In order to counter the threat posed by the Lazarus group, Microsoft has disabled accounts that it suspected to be linked to the hackers. North Korean hackers were recently blamed for the bankruptcy of a bitcoin exchange following cyber thefts that resulted in the loss of more than $72 million worth of bitcoins.Īccording to research from ProofPoint published Tuesday, the Lazarus Group was behind a number of other sophisticated cyberattacks on individuals and corporations targeting cryptocurrency exchange credentials. "State-sponsored groups are generally focussed on espionage and disruption."Ī collage of profile pictures makes up a wall in the break room at the new Facebook Data Center on Apin Forest City, North Carolina. ![]() "The Lazarus Group is a sophisticated, state-sponsored APT group with a long history of successful destructive, disruptive, and costly attacks on worldwide targets," Patrick Wheeler, director of threat intelligence at security firm Proofpoint, said in an emailed comment to Newsweek. These exchanges may have allowed the hackers to trick Facebook users into installing malware that would allow them to hijack victims' computers. "We deleted accounts operated by this group to make it harder for them to conduct their activities."Īccording to the social network, the Lazarus Group hackers used personal profiles to pose as other people in order to develop relationships with potential targets. "Last week, Facebook, Microsoft, and other members of the security community took joint action to disrupt the activities of a persistent, advanced threat group commonly referred to as ZINC, or the Lazarus Group," Facebook said in a statement on Tuesday, December 19. government publicly blamed North Korea for the WannaCry ransomware attacks earlier this year. The covert campaign by hackers from the state-sponsored Lazarus Group was revealed on the same day that the U.S. ![]() A notorious North Korean hacking group is using fake Facebook profiles to hunt for potential victims, the social network has warned. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |