With Rodman In North Korea, US Blames Country For Hacking Spree That Started In 2009
The Department of Homeland Security and the FBI issued an alert Tuesday, saying North Korea is to blame for cyberattacks dating to 2009 and warning of more.
The alert comes as former NBA player Dennis Rodman is in North Korea and on the heels of the release of American college student Otto Warmbier.
Homeland Security and the FBI said “cyberactors of the North Korean government” targeted the "media, aerospace, financial and critical infrastructure sectors in the United States and globally.” The “malicious cyberactivity by the North Korean government” was referred to as Hidden Cobra by U.S. officials.
“Since 2009, Hidden Cobra actors have leveraged their capabilities to target and compromise a range of victims; some intrusions have resulted in the exfiltration of data while others have been disruptive in nature,” the alert said.
U.S. officials said Hidden Cobra actors previously were referred to as the Lazarus Group and Guardians of Peace.
The Lazarus Group has been suspected of carrying out recent attacks against global financial institutions. The hackers are believed to have used "watering hole" techniques to infect targets with strains of malware, security researchers at Symantec said. The group Guardians of Peace was suspected of carrying out a widespread cyberattack against Sony Pictures in 2014. Hackers revealed hundreds of sensitive and embarrassing emails from Sony, and also leaked unreleased films online. Some suspected the hack was in response to Sony’s movie “The Interview,” a comedy about the assassination of Kim Jong Un, starring James Franco and Seth Rogen. North Korea promised to retaliate if movie theaters planned to show the film.
Read: Cybersecurity Tips: Keep Your Passwords And Pins Secure By Using One These Password Manager Apps
The U.S. government said Hidden Cobra actors typically target systems running older, unsupported versions of Microsoft operating systems.
“The multiple vulnerabilities in these older systems provide cyberactors many targets for exploitation,” the alert said. “These actors have also used Adobe Flash player vulnerabilities to gain initial entry into users’ environments.”
More Cyberattacks in the Future
U.S. officials warned about future cyberattacks.
“DHS and FBI assess that Hidden Cobra actors will continue to use cyberoperations to advance their government’s military and strategic objectives,” the alert said. “Cyberanalysts are encouraged to review the information provided in this alert to detect signs of malicious network activity.”
The cyberattacks also come as North Korea has been testing missiles, including a new type that could strike warships. The missiles are part of the fourth new missile system Pyongyang claims it has tested this year. The recent missile activity was the fifth weapons test this month.
North Korea has had a hostile relationship with the United States and has previously released propaganda video depicting the destruction of Washington.
© Copyright IBTimes 2024. All rights reserved.