Articles about north korea

Kim Jong Un

'Desperate' North Korea turns to bank hacking sprees to rake in much-needed dosh

Hackers backed by the North Korea government are attempting to ransack foreign banks to raise funds for the cash-strapped hermit nation. Researchers at FireEye say that a gang dubbed APT38* are trying to pull off a billion-dollar money grab, and are working separate from the infamous Nork-sponsored Lazarus group. According to …
Shaun Nichols, 3 Oct 2018

US Treasury goes after IT shops for funneling cash to North Korea

The US Treasury department is placing new sanctions on two IT companies it believes to be sending money to North Korea. The ruling bars two companies, China Silver Star and Volasys Silver Star, and one person, Jong Song Hwa, from owning any assets in the US or doing business with any US companies or contractors. Based in …
Shaun Nichols, 14 Sep 2018
DOor to a bank vault. Photo by Shutterstock

India's Cosmos bank raided for $13m by hackers

Cosmos Bank in India says that hackers made off with $13.4m in stolen funds over the weekend. Multiple reports out of the country say that a group of attackers used cloned cards to withdraw cash from ATMs at a set time and perform a fraudulent SWIFT money transfer. Together, the efforts resulted in about Rs 94 crore ($13.4m) …
Shaun Nichols, 15 Aug 2018
Rat sillhouettes - Shutterstock

US-CERT warns of more North Korean malware

The United States Department of Homeland Security's Computer Emergency Response Team (US-CERT) has warned against another malware campaign it says originates from North Korea. In its advisory, US-CERT said the “Typeframe” malware “includes malware descriptions related to HIDDEN COBRA”, the tag applied to a North Korean hacking …

FBI fingers North Korea for two malware strains

US CERT has issued a Technical Alert that says two strains of malware are tools of the North Korean government. The Alert says that the United States’ Department of Homeland Security (DHS) and Federal Bureau of Investigation (FBI) “identified IP addresses and other indicators of compromise (IOCs) associated with two families …
Simon Sharwood, 30 May 2018
Kim Jong Un

North Korea's antivirus software whitelisted mystery malware

North Korea’s very own antivirus software has been revealed as based on a 10-year-old application made by Trend Micro, but with added nasties. So says Check Point, which was sent a copy of the “SiliVaccine” application and after analysis declared it contained “large chunks of 10+-year-old antivirus engine code belonging to …

Thailand seizes server linked to North Korean attack gang

A server hidden in a Thai university and allegedly used as part of a North Korean hacking operation has been seized by ThaiCERT. Thailand's infosec organisation announced last Wednesday that the box was operated by the Norks-linked Hidden Cobra APT group, and was part of the command-and-control rig for a campaign called …
panic

Don't want to alarm you, but defence bods think North Korea could nuke UK 'within a few years'

North Korea maintains a hacking base in China, the UK Parliament's Defence Select Committee has been told, while government snooping body GCHQ struggles to retain "cyber-staff". Then there's the slightly greater concern that the communist nation could nuke Britain "within a few years". The House of Commons' Defence Committee …

Surprise: Norks not actually behind Olympic Destroyer malware outbreak – Kaspersky

A close analysis of the code that took down part of the 2018 Winter Olympics computer network reveals a cunning plan to seemingly falsely pin the blame on North Korea. On the first day of the games in Pyeongchang, South Korea, the main website crashed, Wi-Fi networks around the events became unusable, and data was wiped from …
Iain Thomson, 8 Mar 2018
Spectre, photo Metro Goldwyn Mayer Studios Danjaq and Columbia Pictures Industries

Spectre shenanigans, Nork hackers upgrade, bad WD drives and more

Roundup Here's a summary of this week's infosec news beyond what we've already covered in detail. Exploits for chip blunders spook antivirus land First up, January's Meltdown and Spectre processor security design flaws continue to haunt the IT world. Fortinet put out an advisory on Tuesday warning 119 variants of code that exploit …
Iain Thomson, 3 Feb 2018

Nork hackers exploit Flash bug to pwn South Koreans. And Adobe will deal with it next week

Adobe will next week emit patches to squash a security bug in Flash that can be exploited by malicious webpages and documents, when opened, to hijack and spy on vulnerable computers. The flaw is being abused right now by North Korean hackers to infect victims' PCs. You should update your browser or Flash installation – if you' …
Iain Thomson, 1 Feb 2018
Flag of India

Nervy nuke-armed nation fires missile with 5,000km range

India has successfully tested a surface-to-surface ballistic missile. The nation was kind enough to announce the test on Thursday, revealing that its Agni-5 “was successfully flight tested for its full range … from Dr Abdul Kalam Island, Odisha. This was the fifth test of the Missile and the third consecutive one from a …
Simon Sharwood, 19 Jan 2018
rat

North Korea's finest spent 2017 distributing RATs, wipers, and phish

South Korea was the target of a barrage of malware campaigns last year. Cisco Talos's Warren Mercer and Paul Rascagneres (with contributions from Jungsoo An) spent the year watching goings-on on the Korean peninsula. The researchers focussed on one organisation (likely North Korean given the target, but this is unconfirmed), …
Kim Jong Un

UK, US govt and pals on WannaCry culprit: It woz the Norks wot done it

UK Foreign Office Minister Lord Ahmad of Wimbledon today claimed North Korea was behind the WannaCry ransomware incident. He joins the US government, Canada, Australia, New Zealand, Japan, Microsoft, Google, Kaspersky, Symantec, FireEye, and others, in blaming Kim Jong-un's hackers for unleashing WannaCry on the world. Uncle …
Kat Hall, 19 Dec 2017

Crouching cyber Hidden Cobra: US warns Nork hackers are at it again with new software nasty

The FBI and US Homeland Security have issued an alert about a new strain of malware infecting American corporate systems and stealing sensitive data. The remote access trojan (RAT), dubbed Fallchill, is the work of a North Korean hacking group called Hidden Cobra, which some at US-CERT believe was responsible for the WannaCry …
Iain Thomson, 15 Nov 2017
Kim Jong Un

Russian telco backs up North Korea's sole Internet link

North Korea's very limited Internet has, for the second time in its brief history, obtained a redundant connection to the outside world. Dyn Research and North Korea specialists 38 North went public with the existence of the new link on October 1. Dyn's Doug Madory and 38 North's Martyn Williams spotted route announcements …
Bitcoin

North Korea attacks Bitcoin bods to swell its war chest says FireEye

North Korea appears to have commenced online attacks aimed at acquiring Bitcoin so it can evade sanctions. South Korea's Cyber Warfare Research Center alleged a few weeks ago that at least one Bitcoin exchange had been targeted by a Nork hack, and now FireEye threat researcher Luke McNamara writes that “since May 2017, we have …
Simon Sharwood, 13 Sep 2017
Kim Jong Un

Best Korea fingered for hacks against Bitcoin exchanges in South

North Korea has emerged as the prime suspect in recent Bitcoin exchange hacks in South Korea, with threat intel experts warning that more attacks on digital currency services and even mainstream banks are likely to follow. South Korea's Cyber Warfare Research Center reportedly believes that at least one Bitcoin exchange was …
John Leyden, 30 Aug 2017

Create a news alert about north korea, or find more stories about north korea.

Biting the hand that feeds IT © 1998–2018