North Korean government-backed hackers referenced the deadly Halloween crush in Seoul to distribute malware to users in South Korea, Google’s Threat Analysis group said in a report.
The malware was embedded in Microsoft Office documents which purported to be a government report on the tragedy that killed more than 150 people after tens of thousands of young revelers crowded into narrow alleyways.
For the latest headlines, follow our Google News channel online or via the app.
“This incident was widely reported on, and the lure takes advantage of widespread public interest in the accident,” the Threat Analysis Group said.
Google attributed the activity to a North Korean hacking group known as APT37 which it said targets South Korean users, North Korean defectors, policy makers, journalists and human rights activists.
Google also said it has not determined what the malware, which exploited an Internet Explorer vulnerability, was intended to achieve.
It reported the problem to Microsoft on October 31 after multiple reports from South Korean users on the same day. Microsoft issued a patch on November 8.
A United Nations panel of experts that monitors sanctions on North Korea has accused Pyongyang of using stolen funds gained through hacking to support its nuclear and ballistic missile programs to circumvent sanctions.
North Korea does not respond to media inquiries, but has previously released statements denying allegations of hacking.
On Thursday, South Korean officials warned businesses against inadvertently hiring IT staff from North Korea.
In May, the United States issued a similar advisory, saying rogue North Korean freelancers were taking advantage of remote work opportunities to hide their true identities and earn money for Pyongyang.
Chinese hackers stole millions worth of US COVID relief money, Secret Service says
French hospital hit by cyberattack, cancels operations
Hackers dump more customer data from Australia’s biggest health insurer Medibank
South Korea faces public outrage over safety control after deadly Halloween stampedeThe initial shock from a deadly crush among Halloween party-goers in South Korea is turning into public outrage over the government’s planning ... World News
South Korea cancels concerts, government briefings after Halloween stampede tragedyAs the death toll exceeds 150 following a stampede during Halloween celebrations in Seoul, South Korea is canceling events from government briefings ... World News
North Korean hackers stole $400 mln in cryptocurrency in 2021: ChainalysisNorth Korean hackers stole around $400 million worth of cryptocurrency through cyberattacks on digital currency outlets last year, blockchain data ... World News