North Korean hackers corrupt open-source app to hijack computers in novel attack



News North Korean hackers corrupt open-source app to hijack computers in novel attack Attack linked to Lazarus Group uses malware-laced client as lure to gain access, researchers say Nils Weisensee September 16, 2022 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON A stack of servers \| Image: Pixabay Hackers linked to North Korea are using a malicious version of a popular open-source application as a novel lure to hijack computers, researchers at cybersecurity firm Mandiant warned in a report published on Wednesday. According to the researchers, North Korean hacking syndicate UNC4034, also known as Lazarus Group or APT38, injected malware into an application widely used to connect computers. The application, a client called PuTTY, includes a so-called backdoor that ultimately gives the attackers full control over the compromised computer. “There is some evidence to suggest they could be targeting users in technical or Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Time almost up for North Korea’s plan to launch 3 military satellites in 2024 02Trump return rekindles prospects of North Korea talks, but Russia stands in way 03How China could benefit from North Korea’s troop deployment to Ukraine 04New North Korean ICBM delivers big political message, and likely bigger payloads 05How North Korea-Russia ties will challenge next US president, no matter who wins 06What to make of the stunning collapse in value of North Korean won 07What to know about Kim Yong Bok, the man leading North Korean troops in Russia 08If Trump: How erratic leader’s reelection could scramble North Korea policy

News

North Korean hackers corrupt open-source app to hijack computers in novel attack

Attack linked to Lazarus Group uses malware-laced client as lure to gain access, researchers say

Nils Weisensee September 16, 2022

North Korean hackers corrupt open-source app to hijack computers in novel attack

A stack of servers | Image: Pixabay

Hackers linked to North Korea are using a malicious version of a popular open-source application as a novel lure to hijack computers, researchers at cybersecurity firm Mandiant warned in a report published on Wednesday.

According to the researchers, North Korean hacking syndicate UNC4034, also known as Lazarus Group or APT38, injected malware into an application widely used to connect computers. The application, a client called PuTTY, includes a so-called backdoor that ultimately gives the attackers full control over the compromised computer.

“There is some evidence to suggest they could be targeting users in technical or

01Time almost up for North Korea’s plan to launch 3 military satellites in 2024
02Trump return rekindles prospects of North Korea talks, but Russia stands in way
03How China could benefit from North Korea’s troop deployment to Ukraine
04New North Korean ICBM delivers big political message, and likely bigger payloads
05How North Korea-Russia ties will challenge next US president, no matter who wins
06What to make of the stunning collapse in value of North Korean won
07What to know about Kim Yong Bok, the man leading North Korean troops in Russia
08If Trump: How erratic leader’s reelection could scramble North Korea policy

North Korean hackers corrupt open-source app to hijack computers in novel attack

LATEST ANALYSIS

Similar Articles

About the Author

Nils Weisensee