The US Department of Homeland Security, and the Federal Bureau of Investigation have published a report regarding the North Korean linked hacking group known as Hidden Cobra, or Lazarus, and a specific type of malware that has been actively utilized by them on multiple occasions.
A piece from the report reads as follows:
“The malware continuously attempts to reach out to the source and the designation system, which allows either side to initiate a funneling session. The malware can be configured with a proxy server/port and proxy username and password.”
[i]“This feature allows connectivity to a system sitting inside of a proxy server, which allows the actor to bypass the compromised system’s required authentication to reach outside of the network,”[/i]
North Korean and even Chinese linked hacking groups have been in use of highly sophisticated types of malware that has subverted many security measures. It is likely that we will be seeing more reports like this, in the coming months.
Original article can be found here.
That was the news folks, have a good rest of the weekend, and stay safe out there.
---Mad-Architect
01001001 00100000 01000001 01001101 00100000 01011010 01001111 01000100 01001001 01000001 01000011