northkorea – SSL and internet security news

US Government Exposes North Korean Malware

May 14, 2020 infossl

antivirus, malware, nationalsecuritypolicy, northkorea, Security technology

US Cyber Command has uploaded North Korean malware samples to the VirusTotal aggregation repository, adding to the malware samples it uploaded in February. The first of the new malware variants, COPPERHEDGE, is described as a Remote Access Tool (RAT) “used by advanced persistent threat (APT) cyber actors in the targeting of cryptocurrency exchanges and related … Read More “US Government Exposes North Korean Malware” »

Details of the Olympic Destroyer APT

October 21, 2019 infossl

advancedpersistentthreats, attribution, cyberattack, northkorea, russia, Security technology, sports

Interesting details on Olympic Destroyer, the nation-state cyberattack against the 2018 Winter Olympic Games in South Korea. Wired’s Andy Greenberg presents evidence that the perpetrator was Russia, and not North Korea or China. Powered by WPeMatico

Russians Hacked the Olympics

March 1, 2018 infossl

attribution, disinformation, hacking, northkorea, russia, Security technology, sports

Two weeks ago, I blogged about the myriad of hacking threats against the Olympics. Last week, the Washington Post reported that Russia hacked the Olympics network and tried to cast the blame on North Korea. Of course, the evidence is classified, so there’s no way to verify this claim. And while the article speculates that … Read More “Russians Hacked the Olympics” »

Internet Security Threats at the Olympics

February 12, 2018 infossl

cyberattack, dhs, internet, leaks, mcafee, northkorea, russia, Security technology, securitymonitoring, southkorea, sports

There are a lot: The cybersecurity company McAfee recently uncovered a cyber operation, dubbed Operation GoldDragon, attacking South Korean organizations related to the Winter Olympics. McAfee believes the attack came from a nation state that speaks Korean, although it has no definitive proof that this is a North Korean operation. The victim organizations include ice … Read More “Internet Security Threats at the Olympics” »

NSA Links WannaCry to North Korea

June 16, 2017 infossl

hacking, northkorea, nsa, ransomware, Security technology

There’s evidence: Though the assessment is not conclusive, the preponderance of the evidence points to Pyongyang. It includes the range of computer Internet protocol addresses in China historically used by the RGB, and the assessment is consistent with intelligence gathered recently by other Western spy agencies. It states that the hackers behind WannaCry are also … Read More “NSA Links WannaCry to North Korea” »

North Korean Cyberwar Capabilities

May 22, 2017 infossl

cyberwar, northkorea, Security technology

Reuters has an article on North Korea’s cyberwar capabilities, specifically “Unit 180.” They’re still not in the same league as the US, UK, Russia, China, and Israel. But they’re getting better. Powered by WPeMatico

Did North Korea Write WannaCry?

May 16, 2017 infossl

malware, northkorea, nsa, ransomware, Security technology

The New York Times is reporting that evidence is pointing to North Korea as the author of the WannaCry ransomware. Note that there is no proof at this time, although it would not surprise me if the NSA knows the origins of this malware attack. Powered by WPeMatico

The US Has Been Conducting Offensive Cyberattacks against North Korea

March 8, 2017 infossl

cyberattack, cyberwar, nationalsecuritypolicy, northkorea, Security technology

The New York Times is reporting that the US has been conducting offensive cyberattacks against North Korea, in an effort to delay its nuclear weapons program. EDITED TO ADD (3/8): Commentary. Powered by WPeMatico

Further Evidence Pointing to North Korea as Sony Hacker

January 9, 2015 infossl

attribution, fbi, hacking, northkorea, Security technology, sony

The FBI has provided more evidence: Speaking at a Fordham Law School cybersecurity conference Wednesday, Comey said that he has “very high confidence” in the FBI’s attribution of the attack to North Korea. And he named several of the sources of his evidence, including a “behavioral analysis unit” of FBI experts trained to psychologically analyze … Read More “Further Evidence Pointing to North Korea as Sony Hacker” »

Attack Attribution in Cyberspace

January 8, 2015 infossl

attribution, cybersecurity, cyberwar, essays, fbi, intelligence, nationalsecuritypolicy, northkorea, nsa, Security technology, sony

When you’re attacked by a missile, you can follow its trajectory back to where it was launched from. When you’re attacked in cyberspace, figuring out who did it is much harder. The reality of international aggression in cyberspace will change how we approach defense. Many of us in the computer-security field are skeptical of the … Read More “Attack Attribution in Cyberspace” »