North Korean hackers use new method to dodge security programs
Cybersecurity firm outlines Lazarus-attributed phishing attempt in recent report
Hackers linked to North Korea deployed a new means of extracting malware by hiding it inside a legitimate-looking command to convert a PNG image into a BMP image, according to a new report from security company Malwarebytes.
Based on similarities to previous code and tactics, researchers at Malwarebytes attributed the phishing attack to the North Korea-linked Lazarus Group, which harnessed a Korean-language Microsoft Office Word document enabled with a malicious macro.
“This is the first time I saw Lazarus using this technique,” said Hossein Jazi, a threat intelligence researcher at Malwarebytes and the report’s
- 01Silence on North Korea’s reunification committee bad sign for talks with South
- 02North Korea is stronger and more resilient than US policymakers think
- 03It’s time for rhetoric to reflect reality: North Korea sanctions don’t work
- 04Full text: Speech marks South Korean President Moon’s fourth year in office
- 05No matter what Biden does, North Korea will still accuse him of ‘hostile policy’
- 06Why South Korea’s Democrats are still the best of a bad bunch for North Korea
- 07Kim Jong Un’s battle with teen spirit, foreign media and bureaucracy goes public
- 08The US policy review is finished, but it’s same old, same old to North Korea