Category Archives: New York Fed Reserve Bank

North Korean hackers wanted investigators to think Russians hacked banks

Posted on by

A group of highly skilled bank-raiding hackers accused of working for the North Korean government is using tools that include computer code intended to make it appear like a Russian outfit is responsible, researchers say. Cybersecurity researchers tell CyberScoop that the group, dubbed Lazarus, is fusing Russian language strings into its tools in an effort to confuse defenders and obfuscate attribution. The technique, discovered by Kaspersky and presented Monday at the company’s Security Analyst Summit in St. Maarten, shows how sophisticated threat actors will design attacks in ways that make it more difficult for forensic analysts to track their activity. Lazarus mostly recently has been accused of stealing $81 million from Bangladesh Bank, and was blamed for the infamous Sony hack. A set of outdated Adobe Flash Player and Microsoft Silverlight exploits repeatedly  used by the Lazarus group carry Russian words like chainik, BabaLena, vyzov_chainika, and podgotovkaskotiny in the computer code. On […]

The post North Korean hackers wanted investigators to think Russians hacked banks appeared first on Cyberscoop.

Continue reading North Korean hackers wanted investigators to think Russians hacked banks

Opsec fail allows researchers to track Bangladesh Bank hack to North Korea

Posted on by

A computer in North Korea was used to launch one of the most high profile cyberattacks in recent memory, enabling hackers to break into the Federal Reserve Bank of New York and steal $81 million from Bangladesh Bank, according to new research conducted by Moscow-based Kaspersky Lab. Kaspersky published original details about the incident Monday during the first day of a security conference hosted by the company on the Caribbean island of St. Maarten. An apparent and rare operational security mistake made by the advanced hacking group, known as Lazarus Group, allowed researcher to spot a connection that existed between a compromised European server — used by the group to launch its attacks — and an internet address owned by North Korea’s only internet service provider. The hackers reportedly failed to scrub log files on the European server, leaving a trail of digital bread crumbs back to the foreign computer. […]

The post Opsec fail allows researchers to track Bangladesh Bank hack to North Korea appeared first on Cyberscoop.

Continue reading Opsec fail allows researchers to track Bangladesh Bank hack to North Korea