11/21/2023 0 Comments Lazarus group fireeye“The discovery of a small number of earlier WannaCry attacks has provided compelling evidence of a link to the Lazarus group,” a blogpost by Symantec Security Response team reads. In addition, both the February and March WannaCry campaigns relied on a command and control infrastructure linked to older Lazarus Group operations. For example, researchers believe that at least one remote access trojan used to deploy WannaCry in recent months is an upgraded version of a capability solely controlled and originally designed by the Lazarus Group. Symantec also collected data on a series of other WannaCry infections in late March, which similarly carried backdoor implants built with computer code previously linked to North Korea. The attacks against Sony Pictures have been widely attributed to hackers linked to North Korea by both private sector cybersecurity firms and the FBI, though no definitive proof has ever publicly surfaced. By obtaining an early sample, analysts were able to comprehensively study and identify individual components within the malware, some of which shared similarities to hacking tools used in late 2014 against Sony Pictures. Researchers originally came across WannaCry in February when it was first found on a Symantec client’s network - a full three months prior to the global outbreak. cybersecurity firm Symantec said it too discovered “strong links” between WannaCry ransomware and the so-called Lazarus Group. Their theory gained new found credibility Monday when U.S. In the aftermath of a global ransomware attack, which impacted more than 300,000 computers in over 150 countries, a small, select group of security researchers announced they had found evidence suggesting a group previously linked to the North Korean government was likely behind the international cyber incident.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |