Skip to content

February 12, 2016

Study links North Korea to Sony hack and malware campaign

by John_A

Cyber-security firms Kaspersky and Alienvault Labs announced at the Kaspersky Security Analyst Summit that they had uncovered new evidence linking the massive Sony Pictures hack of 2014 with an ongoing malware attack directed at South Korea. The security firms believe that the same group has perpetrated both attacks and, though they did not specify where the attacks were coming from, their evidence does point to the group most likely operating out of North Korea.

Kaspersky and Alienvault collected nearly 500 malware samples over the course of a year that they believed to be related and after analyzing them discovered a number of striking similarities. Beyond sharing common user agent lists and attack structures, the two campaigns used the same password for their respective “dropper” programs and the chances of that happening coincidentally are miniscule. What’s more, programs for both attacks were written in the Korean Hangul alphabet. There’s no word on what, if any, recourse either Sony or the South Koreans have at this point.

Via: Verge

Source: Wired

Read more from News

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Note: HTML is allowed. Your email address will never be published.

Subscribe to comments

%d bloggers like this: