Experts see North Korea connection in corrupted malware analysis tool



News Experts see North Korea connection in corrupted malware analysis tool Researchers say Lazarus Group targeted security professionals in latest attempt to steal confidential information Ethan Jewell November 12, 2021 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON NK Pro \| A North Korean man using a computer in Pyongyang on Apr. 9, 2018 A North Korea-linked hacking group is likely behind an infected version of a popular software analysis tool, a cybersecurity research group has found, in the second DPRK attack against cybersecurity professionals uncovered this year. Slovakia-based ESET Research Labs (ESET) announced on Wednesday that it has discovered an infected installer for IDA Pro 7.5, a tool that allows researchers to translate binary computer code — especially from malware — into assembly language, a form more readily-intelligible to humans. In a tweet, ESET stated that “based on the domain and trojanized application, we attribute this malware to known Lazarus [Group Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01China could offer Seoul security guarantees against North Korea. Why won’t it? 02North Korea starts new construction at Mount Paektu in bid to attract tourists 03How unsustainable wildlife trade threatens North Korea’s biodiversity 04Opening event imminent for North Korea’s Wonsan Kalma mega beach resort: Imagery 05North Korea dismantles inter-Korean reunions hotel despite Lee’s engagement push 06What Kim Jong Un is learning from Israel’s offensive as Tehran burns 07Trump lifted sanctions on Syria. But that playbook won’t work for North Korea. 08Why Kim Jong Un’s latest military reshuffle wasn’t tied to warship launch mishap

News

Experts see North Korea connection in corrupted malware analysis tool

Researchers say Lazarus Group targeted security professionals in latest attempt to steal confidential information

Ethan Jewell November 12, 2021

Experts see North Korea connection in corrupted malware analysis tool

NK Pro | A North Korean man using a computer in Pyongyang on Apr. 9, 2018

A North Korea-linked hacking group is likely behind an infected version of a popular software analysis tool, a cybersecurity research group has found, in the second DPRK attack against cybersecurity professionals uncovered this year.

Slovakia-based ESET Research Labs (ESET) announced on Wednesday that it has discovered an infected installer for IDA Pro 7.5, a tool that allows researchers to translate binary computer code — especially from malware — into assembly language, a form more readily-intelligible to humans.

In a tweet, ESET stated that “based on the domain and trojanized application, we attribute this malware to known Lazarus [Group

01China could offer Seoul security guarantees against North Korea. Why won’t it?
02North Korea starts new construction at Mount Paektu in bid to attract tourists
03How unsustainable wildlife trade threatens North Korea’s biodiversity
04Opening event imminent for North Korea’s Wonsan Kalma mega beach resort: Imagery
05North Korea dismantles inter-Korean reunions hotel despite Lee’s engagement push
06What Kim Jong Un is learning from Israel’s offensive as Tehran burns
07Trump lifted sanctions on Syria. But that playbook won’t work for North Korea.
08Why Kim Jong Un’s latest military reshuffle wasn’t tied to warship launch mishap

Experts see North Korea connection in corrupted malware analysis tool

LATEST ANALYSIS

Similar Articles

About the Author

Ethan Jewell