![]() The group was linked to Backdoor.Destover, a highly destructive trojan that was the subject of an FBI warning after it was used in an attack against Sony Pictures Entertainment. Included in the list of targeted IP addresses were those of 19 organizations from Poland, 15 from the U.S., nine from Mexico, seven from the U.K., and six from Chile. Lazarus is linked to a string of attacks since 2009 aimed at US and South Korean organizations. The same code was also found on the website of the Banco de la República Oriental del Uruguay, the largest state-owned bank from the South American country, according to BAE Systems. The attack on Bangladesh Bank netted 81 million for the attack group. ![]() Symantec also confirmed seeing the Lazarus wiper tool in Poland at one of their customers. This is the Mexican equivalent to the Polish Financial Supervision Authority. Learn about the Lazarus Group - a North Korean state-sponsored cyber threat. Lazarus Under The Hood (Blogpost) Securelist Other claims that Lazarus was the group behind attacks on the Polish financial sector, in 2017, which noticed string reuse in malware at one of their Polish customers. The BAE Systems researchers found evidence that similar code pointing to the custom exploit kit was present on the website of the National Banking and Stock Commission of Mexico in November. Lazarus gained notoriety for its attack on Sony Pictures in 2014 and an ingenious cyber heist on the Central Bank of Bangladesh in 2016 that stole 81. In the case of the targeted Polish banks, it’s suspected that the malicious code was hosted on the website of the Polish Financial Supervision Authority, the government watchdog for the banking sector. “The vast majority of these organizations are banks, with a small number of telecoms and internet firms also on the list.” “These IP addresses belong to 104 different organizations located in 31 different countries,” researchers from Symantec said in a blog post Sunday. This implies that after the Lazarus Group hacked into Bangladesh Bank it went back through other transfers made by the bank, came across the JICA donations. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |