North Korean hacking group ‘Lazarus’ blamed for spate of international cyberattacks

Reading Time:2 minutes

A North Korean hacking group known as Lazarus was likely behind a recent cyber campaign targeting organisations in 31 countries. Photo: Handout

Published: 2:27pm, 16 Mar 2017Updated: 2:37pm, 16 Mar 2017

A North Korean hacking group known as Lazarus was likely behind a recent cyber campaign targeting organisations in 31 countries, following high-profile attacks on Bangladesh Bank, Sony and South Korea, cyber security firm Symantec Corporation said on Wednesday.

This represents a significant escalation of the threat ... This is a dangerous development

Dan Guido, chief executive of Trail of Bits

Symantec said in a blog that researchers have uncovered four pieces of digital evidence suggesting the Lazarus group was behind the campaign that sought to infect victims with “loader” software used to stage attacks by installing other malicious programs.

“We are reasonably certain” Lazarus was responsible, Symantec researcher Eric Chien said in an interview.

The North Korean government has denied allegations it was involved in the hacks, which were made by officials in Washington and Seoul, as well as security firms.

US Federal Bureau of Investigation representatives could not immediately be reached for comment.

Symantec did not identify targeted organisations and said it did not know if any money had been stolen. Nonetheless, Symantec said the claim was significant because the group used a more sophisticated targeting approach than in previous campaigns.

“This represents a significant escalation of the threat,” said Dan Guido, chief executive of Trail of Bits, which does consulting to banks and the US government.

Select Voice

Choose your listening speed

Get through articles 2x faster

1.25x

250 WPM

Slow

Average

Fast

00:0000:00

1.25x