Saturday, June 15, 2024

North Korean Government Sponsored Hacking Team Member Charged for Wannacry Ransomware and Sony Cyber Attack

North Korean Government sponsored APT “Lazarus Group,” member Park Jin Hyok charged for conspiracy to various most destructive Wannacry and Sony Cyber Attack.

Lazarus Group conspiracy attacks conducted against various sectors such as entertainment, financial services, defense, technology, and virtual currency industries, academia, and electric utilities.

Their activities including the development of various malware that was used for one of the biggest Wannacry Ransomware attacks in 2017, Sony cyber Attack on 2014 and Bangladesh Bank attack where attackers theft $81 million.

In this cases, FBI  charging the North Korean citizen Park Jin Hyok who is working behind this Lazarus hacking group for this multiple destructive cyber attacks that could damage high amounts of computer hardware and the extensive loss of data.

According to FBI Director Christopher A, “Today’s announcement demonstrates the FBI’s unceasing commitment to unmasking and stopping the malicious actors and countries behind the world’s cyber attacks,”

Also he said, We stand with our partners to name the North Korean government as the force behind this destructive global cyber campaign.  This group’s actions are particularly egregious as they targeted public and private industries worldwide – stealing millions of dollars, threatening to suppress free speech, and crippling hospital systems.

This Group created disruptive malware that indiscriminately affected victims in more than 150 other countries, causing hundreds of millions, if not billions, of dollars’ worth of damage.

In February 2016, This group attack Bangladesh Bank became the victim of a computer
intrusion and that caused a loss of approximately $81,000,000 and the majority of the
Money has not been recovered to date.

Wannacry Ransomware attack on  May 2017 (WannaCrypt,WanaCrypt0r 2.0,Wanna Decryptor), A Computer Malware family called Ransomware that actually target the Microsoft Windows Operating systems SMB exploit.

Attackers launched a destructive attack on Sony Pictures Entertainment (SPE) in November 2014 and they gained access to SPE’s network by sending malware to SPE employees, and then stole confidential data, threatened SPE executives and employees, and damaged thousands of computers.

Website

Latest articles

Sleepy Pickle Exploit Let Attackers Exploit ML Models And Attack End-Users

Hackers are targeting, attacking, and exploiting ML models. They want to hack into these...

SolarWinds Serv-U Vulnerability Let Attackers Access sensitive files

SolarWinds released a security advisory for addressing a Directory Traversal vulnerability which allows a...

Smishing Triad Hackers Attacking Online Banking, E-Commerce AND Payment Systems Customers

Hackers often attack online banking platforms, e-commerce portals, and payment systems for illicit purposes.Resecurity...

Threat Actor Claiming Leak Of 5 Million Ecuador’s Citizen Database

A threat actor has claimed responsibility for leaking the personal data of 5 million...

Ascension Hack Caused By an Employee Who Downloaded a Malicious File

Ascension, a leading healthcare provider, has made significant strides in its investigation and recovery...

AWS Announced Malware Detection Tool For S3 Buckets

Amazon Web Services (AWS) has announced the general availability of Amazon GuardDuty Malware Protection...

Hackers Exploiting MS Office Editor Vulnerability to Deploy Keylogger

Researchers have identified a sophisticated cyberattack orchestrated by the notorious Kimsuky threat group.The...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles