North Korean cybercriminals attacked South African logistics firm
Lazarus Group likely used access to infected computers for espionage, security researchers say
Cybercriminals linked to North Korea used a previously unknown type of malware to take control of computers at a South African freight logistics company, cybersecurity firm ESET disclosed on Thursday.
The newly discovered software, a so-called backdoor dubbed Vyveva, enabled hackers to steal data, gather information and run malicious code from at least two infected computers, the security researchers wrote in a report.
“This indicates that the intent of the operation is most likely espionage,” the researchers explained. The backdoor was reportedly controlled using Tor, an anonymization network used to hide commands sent by the
- 01What we know about North Korea’s new cruise missiles
- 02North Korea’s long-range missiles pose the greatest threat to Seoul
- 03One of North Korea’s dirtiest businesses may be back amid border lockdown
- 04Restart of Yongbyon reactor reflects North Korea’s need for fissile material
- 05More of the same? Japan’s North Korea strategy under the next prime minister
- 06Identity theft: Sanctioned North Korean ship poses as clean tanker
- 07North Korea acquires two oil tankers through Chinese brokers: UN report
- 08Timeline: From US-ROK military drills to North Korea cutting the hotlines again