North Korean cybercriminals attacked South African logistics firm



News North Korean cybercriminals attacked South African logistics firm Lazarus Group likely used access to infected computers for espionage, security researchers say Min Chao Choy April 9, 2021 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON U.S. Army Operations Division helps offload containers on July 16, 2013, Grahamstown South Africa. U.S. Government Image from Flickr Cybercriminals linked to North Korea used a previously unknown type of malware to take control of computers at a South African freight logistics company, cybersecurity firm ESET disclosed on Thursday. The newly discovered software, a so-called backdoor dubbed Vyveva, enabled hackers to steal data, gather information and run malicious code from at least two infected computers, the security researchers wrote in a report. “This indicates that the intent of the operation is most likely espionage,” the researchers explained. The backdoor was reportedly controlled using Tor, an anonymization network used to hide commands sent by the Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01How long-range strikes on Russia could impact North Korean troop deployments 02How North Korean hackers and IT workers collude to cause chaos 03What pro-Trump think tanks reveal about his likely North Korea policy priorities 04Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 05All the question marks hanging over Trump’s approach to North Korea in term two 06Time almost up for North Korea’s plan to launch 3 military satellites in 2024 07Trump return rekindles prospects of North Korea talks, but Russia stands in way 08How China could benefit from North Korea’s troop deployment to Ukraine 09New North Korean ICBM delivers big political message, and likely bigger payloads 10How North Korea-Russia ties will challenge next US president, no matter who wins

News

North Korean cybercriminals attacked South African logistics firm

Lazarus Group likely used access to infected computers for espionage, security researchers say

Min Chao Choy April 9, 2021

North Korean cybercriminals attacked South African logistics firm

U.S. Army Operations Division helps offload containers on July 16, 2013, Grahamstown South Africa. U.S. Government Image from Flickr

Cybercriminals linked to North Korea used a previously unknown type of malware to take control of computers at a South African freight logistics company, cybersecurity firm ESET disclosed on Thursday.

The newly discovered software, a so-called backdoor dubbed Vyveva, enabled hackers to steal data, gather information and run malicious code from at least two infected computers, the security researchers wrote in a report.

“This indicates that the intent of the operation is most likely espionage,” the researchers explained. The backdoor was reportedly controlled using Tor, an anonymization network used to hide commands sent by the

01How long-range strikes on Russia could impact North Korean troop deployments
02How North Korean hackers and IT workers collude to cause chaos
03What pro-Trump think tanks reveal about his likely North Korea policy priorities
04Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump.
05All the question marks hanging over Trump’s approach to North Korea in term two
06Time almost up for North Korea’s plan to launch 3 military satellites in 2024
07Trump return rekindles prospects of North Korea talks, but Russia stands in way
08How China could benefit from North Korea’s troop deployment to Ukraine
09New North Korean ICBM delivers big political message, and likely bigger payloads
10How North Korea-Russia ties will challenge next US president, no matter who wins

North Korean cybercriminals attacked South African logistics firm

LATEST ANALYSIS

Similar Articles

About the Author

Min Chao Choy