Television

Sony Pictures & global banks among targets of N. Korean hackers, says Group-IB

MUMBAI: Group-IB, one of the global leaders in providing high-grade Threat Intelligence and best in class anti-fraud solutions vendor, has published a detailed report leaving no doubt that Lazarus, a cyber gang that attempted to steal about 1 billion USD from the Central Bank of Bangladesh and compromised a number of Polish banks, was connected to North Korea. Deep analysis of the cybercriminals' Command & Control infrastructure as well as detailed Threat Intelligence information enabled the researchers to prove that the attacks were managed from Pyongyang.

Group-IB is one of the global leaders in preventing and investigating high-tech crimes and online fraud. The company is recognized by Gartner as a threat intelligence vendor with strong cyber security focus and the ability to provide leading insight to the Eastern European region and recommended by the Organization for Security and Co-operation in Europe (OSCE).

What is Lazarus?

Lazarus (also known as Dark Seoul Gang) is known to DDoS and hack governmental, military, and aerospace institutions worldwide. The earliest known attack that the group is responsible for is known as "Troy Operation", which took place from 2009-2012. This was a cyber-espionage campaign that utilized unsophisticated DDoS techniques to target the South Korean government in Seoul. They are also responsible for attacks in 2011 and 2013. A notable hack that the group is known for is the 2014 attack on Sony Pictures, when personal information about the employees and their families, internal e-mails, copies of then-unreleased Sony films as well as other information was published. The Sony attack used more sophisticated techniques and highlighted how advanced the group has become over time. When the global economic pressure on North Korea increased, Lazarus shifted its focus to international financial organizations for financial and espionage gains. In 2016, the group attempted to steal about $951mln from the Central Bank of Bangladesh SWIFT; however, a mistake in a payment request cut the criminals' income to only $81 mln.

What's so peculiar about Group-IB's report?

Previous reports were focused on either malware analysis, or the attribution based on malware analysis. However, since the attribution based on malware code similarities is not always reliable, Group-IB has focused on infrastructure research. The company's experts conducted an in-depth investigation of Lazarus activity and gained unique insight into their complex botnet infrastructure built by the hacker group to conduct their attacks. Despite the complex three-layer architecture, encrypted channels, VPN services, and other advanced techniques, the researchers managed to identify that the group was operating from Potonggang District, North Korea — perhaps coincidentally, where National Defense Commission was located, previously the highest military body in North Korea. 

Dmitry Volkov, Head of Threat Intelligence Department and сo-founder of Group-IB: "Our research testified that North Korean Lazarus group is taking extraordinary precaution measures, dividing the attacks into several stages and launching all the modules manually. So that even if the attack is detected, it would take security researchers much time and effort to investigate it. To mask malicious activity, the hackers used a three-layer C&C infrastructure and pretended to be Russians."

Through analysis of compromised networks, Group-IB identified IP addresses of universities in the US, Canada, Great Britain, India, Bulgaria, Poland, Turkey, pharmaceutical companies in Japan and China, as well as government subnets in various countries.

"Taking into consideration strengthening economic sanctions against North Korea, as well as the geopolitical tension in the region, we expect a new wave of Lazarus attacks against global financial institutions. With that said, we strongly recommend the banks learn more about targeted attacks' tactics and techniques, increase corporate cybersecurity awareness, and cooperate with the companies providing relevant Threat Intelligence," Volkov added.

Latest Reads

http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/18/aaj.jpg?itok=WTXjyKeT
Aaj Tak becomes the world’s first News Channel to be awarded YouTube’s ‘Diamond Play Button’

India’s No.1 news channel Aaj Tak creates history yet again! The prestigious ‘Diamond Play Button’ bestowed by YouTube, recognises Aaj Tak as the global no.1, the first and the only news channel in the world to have crossed the 10 Million Subscriber mark.

Television TV Channels News Broadcasting
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/18/news.jpg?itok=PDqQIFhw
News18 India launches campaign; asserts channel’s leadership

News18 India, Network18’s general Hindi news channel, recently launched a campaign with a humorous and quirky film to drive home its leadership position in the crucial primetime band in the highly competitive Hindi TV news segment.

Television TV Channels News Broadcasting
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/18/flix.jpg?itok=1RgvxTpA
Join Drac’s Pack on their cruise as &flix presents its next #FlixFirstPremiere ‘Hotel Transylvania 3: Summer Vacation’

It is seldom that you get to see the hilarious side to a monster trying to get himself a date with the help of a technological app like Siri! Have you ever seen a monster film that is full of fun, frolic, laughter, romance and adventure?

Television TV Channels English Entertainment
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/18/9xm.jpg?itok=ZerfjJqA
9XM On Stage with Salim Sulaiman

To celebrate the Republic Day week, 9XM - India’s most popular Bollywood music destination announces the launch of 9XM On Stage a splendid musical night created in honour of the Indian Armed Forces.

Television TV Channels Music and Youth
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/18/pritam.jpg?itok=tVS2_5SL
Prime Focus joins hands with Pritam and Kwan to create JAM8

Integrated media services company Prime Focus Ltd has announced its collaboration with Jam8, a musical platform founded by Indian music composer/director Pritam, and KWAN, a talent management company to serve as a 360-degree creative solution provider for the M&E industry.

Television Production House Film Production
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/18/star.jpg?itok=Xao8ACOH
Star Movies Kids is the new kid on the block

A few years ago Star India decided to hive off some bits of its repertoire and focus exclusively on its main GEC Star Plus and the emerging sports scenario. Surprisingly, the channel is now taking a new turn by targeting the youngest viewers. As per industry sources, the Uday Shankar-led network is...

Television TV Channels Kids
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/17/cn.jpg?itok=BRpRY0Oq
Zapak and Cartoon Network India partner to launch ‘Ben 10 - Alien Run’ mobile game

Anil D. Ambani led Reliance Entertainment’s Zapak, India’s leading Gaming Destination, in association with Cartoon Network India, rings in the New Year with an epic launch for fans and gamers alike, with Ben 10 - Alien Run Mobile Game.

Television TV Channels Kids
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/17/makarskratni.jpg?itok=GEQT4q5A
Sony Entertainment Television makes Makarsankranti memorable for the commuters of Western Railway

The local trains in Mumbai are known to give a unique glimpse into the lives of Mumbaikars.

Television TV Channels GECs
http://www.indiantelevision.com/sites/default/files/styles/340x340/public/images/tv-images/2019/01/17/atul.jpg?itok=WTNlgJrH
ZEE announces offer on Zee Family Packs, now at Rs. 39* per month

With the new tariff/pricing regime all set to come into effect from February 01, 2019 ZEE, the No. 1 television network of the country, announces attractive launch offers for its consumers. Zee family packs will be available for Rs. 39* only. This special launch offer has been devised for consumers...

Television TV Channels GECs

Latest News

Load More

Sign up for our Newsletter

subscribe for latest stories