NK News (file photo) | A North Korean man uses a computer in Pyongyang on Sept. 14, 2015
The North Korean malware attack against Seoul-based DailyNK has spread across multiple companies that accessed the website over the past few months, cybersecurity firm Kaspersky has told NK News.
The infections contradict Daily NK’s claim that hackers inserted the malicious code on pages only accessible to its own staff, and raises questions about the organization’s decision to keep its readers in the dark about the security breach.
Senior Kaspersky Security Researcher Seongsu Park said the malware, which another firm dubbed “Bluelight” and attributed to the DPRK-linked hacking group APT37, had infected several companies
The North Korean malware attack against Seoul-based DailyNK has spread across multiple companies that accessed the website over the past few months, cybersecurity firm Kaspersky has told NK News.
The infections contradict Daily NK’s claim that hackers inserted the malicious code on pages only accessible to its own staff, and raises questions about the organization’s decision to keep its readers in the dark about the security breach.
Nils Weisensee is Director of News Operations at Korea Risk Group and covers cybersecurity for NK Pro. He previously founded information security firm Frontier Intelligence, served as head of operations at non-profit Choson Exchange, and was a reporter for DAPD and the Associated Press.