29 Jan 2021

Lazarus Affiliate ‘ZINC’ Blamed for Campaign Against Security Researcher

Recent attacks against security researchers have been linked to North Korean APT ZINC, an affiliate of the notorious Lazarus group. New details have emerged on the attack, describing how the APT exploited Visual Studio, a Microsoft product, to infect systems with malware now known to be the comebacker malware variant.

Read More
28 Dec 2020

Lazarus Group Hits COVID-19 Vaccine-Maker in Espionage Attack

The APT Lazarus Group and other threat actors have allegedly been actively trying to steal COVID-19 research, likely to speed up their own countries’ vaccine development efforts. Lazarus is likely seeking to steal intellectual property to report back to North Korea, according to Kaspersky researchers. Lazarus recently attacked both a

Read More
06 Nov 2020

This hacking group is using previously unknown tools to target defence contractors

McAfee security researchers first released detailed information on Operation North Star earlier this year, highlighting the campaigns conducted by Lazarus Group (Hidden Cobra) targeting defense and aerospace companies in a social engineering and phishing campaign. McAfee’s coverage showed that the campaign was larger than previously thought. In the McAfee report,

Read More
17 Sep 2020

Likely Links Emerge Between Lazarus Group and Russian-Speaking Cybercriminals

Yesterday, newly published nalysis from the security firm Intel 471 uncovered links between North Korea’s Lazarus Group and Russian-speaking cybercriminals. The report pinpoints links between the two organizations through examining years of security incidents. The conclusion, however, depends on two popular and generally accepted assumptions: that the Trickbot, TA505, and

Read More
02 Sep 2020

New Threat Activity by Lazarus Group Spells Trouble For Orgs

North Korean hacking group known as Lazarus has allegedly launched several cyber campaigns that aim to raise finances for the country’s missile program. Last week, the US government issued a warning about how the group was currently targeting banks in several different countries. Cybersecurity experts believe that these ventures bring

Read More
13 Aug 2020

Israel Says It Beat Attack by North Korean Cyber Group Under U.S. Sanctions

On Wednesday, Israel made a statement claiming that it had avoided a North Korean cyber group called Lazarus’s attempt to steal sensitive information from the country’s leading defense companies. Israel’s Defense Ministry did not specifically link North Korea to the Lazarus group, however, Lazarus is known to be a prominent

Read More
29 Jul 2020

Lazarus Group Shifts Gears with Custom Ransomware

North Korean advanced persistent threat (APT) group called Lazarus has emerged with new custom ransomware first spotted by Kaspersky in attacks against two organizations in March and April of this year. Researchers who have been observing the group’s actions state that the strain of ransomware utilized in the attacks is

Read More
23 Jul 2020

Lazarus Group Surfaces with Advanced Malware Framework

North Korean hacking group called Lazarus Group has emerged with a new multipurpose malware framework that targets a variety of systems, including Windows, Linux, and macOS. The APT has named the sophisticated malware framework MATA. Kaspersky researchers discovered the new framework when investigating a series of attacks that utilized the

Read More
06 Jul 2020

North Korean hackers linked to credit card stealing attacks on US stores

Research released earlier today connects North Korean nation-state hacking group Lazarus to a campaign that lasted over a year and targeted payment card information of customers of large US and European based retailers. The group allegedly used legitimate websites to exfiltrate stolen credit card data from the companies, known as

Read More
04 Dec 2019

New macOS Threat Served from Cryptocurrency Trading Platform

Security researchers have reported a new macOS malware that traces back to the malicious North Korean hacking group Lazarus. The threat has a low detection rate and is capable of retrieving a payload from a remote location. Malware researcher Dinesh Devadoss provided a hash for the malware sample that had

Read More