Hackers associated with the DPRK are related to a new wave of cyberattacks against investors operating on the stock exchange crypto-currency. With this statement was made on Tuesday, The Wall Street Journal, which refers to the report of the American company Recorded Future, dealing with cybersecurity.
According to experts of this firm, cyber attacks on players on crypto-exchange exchanges, mainly South Korean, have intensified in the last months of 2017 and are likely to continue to this day.
According to experts, these attacks use malicious code, similar to the one used by the hacker group Lazarus Group, presumably managed from the DPRK.
This code, as experts say, Lazarus Group used in the attacks on the server of the movie company Sony Pictures in 2014.
The US authorities then believed that Sony was attacked for creating a satirical film about Kim Jong-un and attributed the cyberattack to hackers associated with the DPRK.
In addition, according to the experts of Recorded Future, the mentioned malicious code is also similar to the one used in a massive cyber attack with the help of the WannaCry virus encryption software on computers in 74 countries in May 2017.
In December, the US administration officially placed on the DPRK responsibility for the cyberattack using WannaCry.
As The Wall Street Journal writes, the specialists of Recorded Future managed to find out that in the creation of the code used in attacks against investors on the stock exchanges, crypto-currency, including terms in Chinese, were used.
Experts do not rule out that in this way Lazarus Group wanted to divert suspicions from itself or simply used Chinese software when creating the code.
At the end of December, the National Intelligence Agency of South Korea issued a statement that hackers associated with the DPRK were involved in the attack on the exchange crypto currency Bithumb, during which 30,000 users were personally stolen. The Office found that the same malicious code used by the Lazarus Group was used in the hack.