North Korean hackers behind custom ransomware attack targeting wealthy groups



News North Korean hackers behind custom ransomware attack targeting wealthy groups A new report by Kaspersky Labs suggests North Korean hackers are following “big game hunting” hacking trends Min Chao Choy July 29, 2020 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON NK News North Korean state-sponsored hackers are implicated in a custom ransomware strain targeting wealthy companies, researchers from cybersecurity firm Kaspersky Labs said in a report published on Tuesday. If true, the series of attacks follow a larger cybercrime trend of ransomware-deploying groups pivoting from indiscriminate attacks with low payouts to more laborious, high-reward target operations going after wealthy organizations. Kaspersky attributed a new strain of ransomware called VHD to the Lazarus Group, a constellation of hackers working on behalf of Pyongyang. Kaspersky found similar Tactics, Techniques, and Procedures (TTP) seen in previous Lazarus operations, as well as the use of Lazarus-linked MATA malware to install VHD onto victim computers. North Korean state-sponsored hackers are implicated in a custom ransomware strain targeting wealthy companies, researchers from cybersecurity firm Kaspersky Labs said in a report published on Tuesday. If true, the series of attacks follow a larger cybercrime trend of ransomware-deploying groups pivoting from indiscriminate attacks with low payouts to more laborious, high-reward target operations going after wealthy organizations. Kaspersky attributed a new strain of ransomware called VHD to the Lazarus Group, a constellation of hackers working on behalf of Pyongyang. Kaspersky found similar Tactics, Techniques, and Procedures (TTP) seen in previous Lazarus operations, as well as the use of Lazarus-linked MATA malware to install VHD onto victim computers. Become a member for less than $4 per week. Unlimited access to all of NK News: reporting, investigations, analysis The NK News Daily Update, an email newsletter to keep you in the loop Searchable archive of all content, photo galleries, special columns Contact NK News reporters with tips or requests for reporting Get unlimited access to all NK News content, including original reporting, investigations, and analyses by our team of DPRK experts. Subscribe now All major cards accepted. No commitments – you can cancel any time. © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. Get the Daily Update Start your day with the North Korea stories that matter most – as selected by And how should we address you in correspondence? One more step! Please check your inbox, for an email we just sent you, and click on the confirmation message in it to get subscribed to our Daily News Update. Trending

News

North Korean hackers behind custom ransomware attack targeting wealthy groups

A new report by Kaspersky Labs suggests North Korean hackers are following “big game hunting” hacking trends

Min Chao Choy July 29, 2020

North Korean hackers behind custom ransomware attack targeting wealthy groups

NK News

North Korean state-sponsored hackers are implicated in a custom ransomware strain targeting wealthy companies, researchers from cybersecurity firm Kaspersky Labs said in a report published on Tuesday. If true, the series of attacks follow a larger cybercrime trend of ransomware-deploying groups pivoting from indiscriminate attacks with low payouts to more laborious, high-reward target operations going after wealthy organizations.

Kaspersky attributed a new strain of ransomware called VHD to the Lazarus Group, a constellation of hackers working on behalf of Pyongyang. Kaspersky found similar Tactics, Techniques, and Procedures (TTP) seen in previous Lazarus operations, as well as the use of Lazarus-linked MATA malware to install VHD onto victim computers.

Become a member for less than $4 per week.

Unlimited access to all of NK News: reporting, investigations, analysis
The NK News Daily Update, an email newsletter to keep you in the loop
Searchable archive of all content, photo galleries, special columns
Contact NK News reporters with tips or requests for reporting

Get unlimited access to all NK News content, including original reporting, investigations, and analyses by our team of DPRK experts.

Subscribe now

All major cards accepted. No commitments – you can cancel any time.

North Korean hackers behind custom ransomware attack targeting wealthy groups

Become a member for less than $4 per week.

Start your day with the North Korea stories that matter most –

as selected by <img width="226" height="50" class="logo" src="https://www.nknews.org/wp-content/themes/nknews/images/header-logo.png" alt="NK News Logo">

One more step!

Trending

Recent Stories

About the Author

Min Chao Choy

Start your day with
the North Korea stories that matter most –

as selected by