North Korean hackers hit Microsoft servers with ‘reconnaissance’ malware: Report



News North Korean hackers hit Microsoft servers with ‘reconnaissance’ malware: Report Cybersecurity firm says Lazarus Group targeted ‘poorly managed’ devices in possible effort to steal system credentials Anton Sokolin May 26, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON Illustration of the DPRK flag behind lines of code North Korean hackers targeted vulnerable Microsoft web infrastructure with malicious software using a similar technique attackers used to gain access to cryptocurrency firms, a South Korean security firm says in a new report. AhnLab Security Emergency Response Center (ASEC) states that the attack targeted Microsoft Internet Information Services (IIS) servers and relied on a technique known as Dynamic Link Library (DLL) side-loading, involving the transfer of shared Microsoft libraries. According to the report, the Lazarus Group attackers infiltrated the network by placing “a malicious DLL (msvcr100.dll) in the same folder path as a normal Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push 02How long-range strikes on Russia could impact North Korean troop deployments 03How North Korean hackers and IT workers collude to cause chaos 04What pro-Trump think tanks reveal about his likely North Korea policy priorities 05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 06All the question marks hanging over Trump’s approach to North Korea in term two 07Time almost up for North Korea’s plan to launch 3 military satellites in 2024 08Trump return rekindles prospects of North Korea talks, but Russia stands in way

News

North Korean hackers hit Microsoft servers with ‘reconnaissance’ malware: Report

Cybersecurity firm says Lazarus Group targeted ‘poorly managed’ devices in possible effort to steal system credentials

Anton Sokolin May 26, 2023

North Korean hackers hit Microsoft servers with ‘reconnaissance’ malware: Report

Illustration of the DPRK flag behind lines of code

North Korean hackers targeted vulnerable Microsoft web infrastructure with malicious software using a similar technique attackers used to gain access to cryptocurrency firms, a South Korean security firm says in a new report.

AhnLab Security Emergency Response Center (ASEC) states that the attack targeted Microsoft Internet Information Services (IIS) servers and relied on a technique known as Dynamic Link Library (DLL) side-loading, involving the transfer of shared Microsoft libraries.

According to the report, the Lazarus Group attackers infiltrated the network by placing “a malicious DLL (msvcr100.dll) in the same folder path as a normal

01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push
02How long-range strikes on Russia could impact North Korean troop deployments
03How North Korean hackers and IT workers collude to cause chaos
04What pro-Trump think tanks reveal about his likely North Korea policy priorities
05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump.
06All the question marks hanging over Trump’s approach to North Korea in term two
07Time almost up for North Korea’s plan to launch 3 military satellites in 2024
08Trump return rekindles prospects of North Korea talks, but Russia stands in way

North Korean hackers hit Microsoft servers with ‘reconnaissance’ malware: Report

LATEST ANALYSIS

Similar Articles

About the Author

Anton Sokolin