New North Korean hacking group extorting small businesses in ransomware attacks
Microsoft says H0lyGh0st hackers deploying increasingly sophisticated ransomware but have been unsuccessful so far
A newly identified North Korean hacking group has extorted ransoms from small- and mid-sized companies in several countries, security researchers at Microsoft said Thursday.
The group calls itself H0lyGh0st and has since late last year distributed ransomware in a widespread, financially motivated campaign. Once infected, victims’ files are encrypted, followed by a ransom note demanding payment and threatening to publish the stolen data on social media, similar to the DPRK’s WannaCry ransomware attack in 2017 that impacted hundreds of thousands of computer systems.A H0lyGh0st ransom note linked to the group’s
- 01Timeline: From North Korean satellite launch to Yoon-Kishida summit in Seoul
- 02State media review: North Korea says ‘no reason’ it can’t meet with Japan
- 03North Korea primed for quick rebound after satellite launch failure: Analysis
- 04What to make of conflicting signs about a North Korean border reopening
- 05North Korea hacked an election body. But political interference wasn’t the goal.
- 06Secrecy surrounding North Korea’s upcoming plenum points to big changes afoot
- 07State media review: North Korea provides a front-row seat to anti-Yoon protests
- 08By linking radars, ROK and Japan reduce blind spots around North Korean missiles