Lazarus group which is a very famous group from the infamous North Korean has now come back.

Continue reading
Lazarus group which is a very famous group from the infamous North Korean has now come back. The hackers and attackers that belong to this group and are a part of this group are apparently now targeting cryptocurrency organizations. They are doing so with the help of sending phishing emails using LinkedIn, which is owned by Microsoft-In.
As told by some of the leading cybersecurity researchers at F-Secure, which is a global leading cybersecurity firm, a system administrator from the target organization received a phishing malicious document through their personal account associated with LinkedIn.
The document showed the false appearance of a legitimate and proper job advertisement for a job of role in a blockchain technology company that matched the employee's skills.
Even though the document and file which was present on the host of the target had been altered and modified for removing malicious and dangerous content after execution, F-Secure assessed that the original document and the file were still the same and were remained as unchanged and unmodified.
In 2019, original malicious content was created. This was in accordance with the data by VirusTotal.
Technical details on Lazarus Group's modus operandi were uncovered by F-Secure in 2019. It was discovered at the time of an investigation of a cyber-attack in the cryptocurrency vertical on an organization or firm.
The cybersecurity firm further said that the activities of the Lazarus Group have been a continued threat. The recently associated email-phishing campaign associated with this cyber-attack has been observed to be continuing into 2020. This raises the need and requirement for awareness and ongoing vigilance among organizations and various firms that are operating in the targeted verticals.
The cryptocurrency was stolen Mac and Windows users by cyber attackers and hackers of the hacker group earlier this year.
Not only this but in the times between 2017 and 2018 Lazarus was also involved in stealing nearly over $600 million worth of cryptocurrency.
It is the assessment of the F-group that the group shall continue targetting various organizations and firms within the cryptocurrency vertical. It does this while it still remains such a profitable pursuit, but it may also expand to target supply chain elements of the vertical. It expands so as to increase returns and extend the longevity of the campaign.
Reports surfaced in July this year that North Korea-based hackers have maliciously been engaged in a large scale digital skimming activity way back from the start of May 19, breaking into online stores like international fashion chain Claires to insert malicious code that steals card details pertaining to the payment of the users in the United States of America and the regions of Europe.
According to the report, the attack is part of the large-scale campaign of the Lazarus group that was targeting over 50 lakh individuals and businesses which also included some small enterprises and some large enterprises, across six countries- India, Singapore, South Korea, Japan, the UK and the USA.

148 malicious npm packages masquerading as student proxy and school Wi-Fi bypass tools. Rather than compromising developers during installation