New North Korean cyber-espionage campaign targets medical and energy sectors



News New North Korean cyber-espionage campaign targets medical and energy sectors Report says Lazarus Group showed its hand by mistakenly connecting to victim’s server from DPRK IP address Ethan Jewell February 3, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON A sample of "Locky" ransomware, March 15, 2017 \| Image: Christiaan Colen (CC BY-SA 2.0) North Korea’s most notorious hacking syndicate orchestrated a spate of cyberattacks against the medical and energy sectors last year, according to a new report from a Finnish security firm. According to WithSecure, the campaign — which they dub “No Pineapple!” — ran from May to Nov. 2022 and heavily utilized off-the-shelf malware and programs included with most operating systems by default. “WithSecure Threat Intelligence assess with strong confidence that the threat actor is the Lazarus Group from the Third Bureau of North Korean People’s Army and that the goal of the campaign is intelligence gathering, specifically Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Trump return rekindles prospects of North Korea talks, but Russia stands in way 02How China could benefit from North Korea’s troop deployment to Ukraine 03New North Korean ICBM delivers big political message, and likely bigger payloads 04How North Korea-Russia ties will challenge next US president, no matter who wins 05What to make of the stunning collapse in value of North Korean won 06What to know about Kim Yong Bok, the man leading North Korean troops in Russia 07If Trump: How erratic leader’s reelection could scramble North Korea policy 08North Korea’s admission of drone incursion exposes glaring gaps in air defenses

News

New North Korean cyber-espionage campaign targets medical and energy sectors

Report says Lazarus Group showed its hand by mistakenly connecting to victim’s server from DPRK IP address

Ethan Jewell February 3, 2023

New North Korean cyber-espionage campaign targets medical and energy sectors

A sample of "Locky" ransomware, March 15, 2017 | Image: Christiaan Colen (CC BY-SA 2.0)

North Korea’s most notorious hacking syndicate orchestrated a spate of cyberattacks against the medical and energy sectors last year, according to a new report from a Finnish security firm.

According to WithSecure, the campaign — which they dub “No Pineapple!” — ran from May to Nov. 2022 and heavily utilized off-the-shelf malware and programs included with most operating systems by default.

“WithSecure Threat Intelligence assess with strong confidence that the threat actor is the Lazarus Group from the Third Bureau of North Korean People’s Army and that the goal of the campaign is intelligence gathering, specifically

01Trump return rekindles prospects of North Korea talks, but Russia stands in way
02How China could benefit from North Korea’s troop deployment to Ukraine
03New North Korean ICBM delivers big political message, and likely bigger payloads
04How North Korea-Russia ties will challenge next US president, no matter who wins
05What to make of the stunning collapse in value of North Korean won
06What to know about Kim Yong Bok, the man leading North Korean troops in Russia
07If Trump: How erratic leader’s reelection could scramble North Korea policy
08North Korea’s admission of drone incursion exposes glaring gaps in air defenses

New North Korean cyber-espionage campaign targets medical and energy sectors

LATEST ANALYSIS

Similar Articles

About the Author

Ethan Jewell